# ipsec.conf - strongSwan IPsec configuration file

# basic configuration

config setup
	# strictcrlpolicy=yes
	# uniqueids = no

# Add connections here.

# Sample VPN connections

#conn sample-self-signed
#      leftsubnet=10.1.0.0/16
#      leftcert=selfCert.der
#      leftsendcert=never
#      right=192.168.0.2
#      rightsubnet=10.2.0.0/16
#      rightcert=peerCert.der
#      auto=start

#conn sample-with-ca-cert
#      leftsubnet=10.1.0.0/16
#      leftcert=myCert.pem
#      right=192.168.0.2
#      rightsubnet=10.2.0.0/16
#      rightid="C=CH, O=Linux strongSwan CN=peer name"
#      auto=start

conn jezekus
      left=89.102.125.177
      leftsubnet=%dynamic[gre]
      leftauth=psk
      right=90.178.88.106
      rightsubnet=%dynamic[gre]
      rightauth=psk
      auto=start
      keyexchange=ikev2
      ike=aes256-sha256-modp4096
      esp=aes256-sha256-modp4096
      type=transport