vpn:linux_server_ikev2
Это старая версия документа!
Install packages
apt install strongswan strongswan-pki libcharon-extra-plugins netfilter-persistent iptables-persistent
Generate CA and certificates
ipsec pki --gen --type ecdsa --outform pem > vpn_ca_key.pem ipsec pki --self --in vpn_ca_key.pem --type ecdsa --dn "C=US, O=Testig Ltd., CN=Root CA" --ca --lifetime 3650 --outform pem > vpn_ca_cert.pem ipsec pki --gen --type ecdsa --outform pem > vpn_server_key.pem ipsec pki --pub --in vpn_server_key.pem --type ecdsa > vpn_server_pub_key.pem ipsec pki --issue --in vpn_server_pub_key.pem --lifetime 3650 --cacert vpn_ca_cert.pem --cakey vpn_ca_key.pem --dn "CN=FQDN" --san="FQDN" --flag serverAuth --flag ikeIntermediate --outform pem > vpn_server_cert.pem
vpn/linux_server_ikev2.1632057472.txt.gz · Последнее изменение: — bers