entrouvert
/
univnautes
Archived
17
0
Fork 0
Code Issues Pull Requests Releases Activity

Use leftcert for more options on IPsec authentication

This commit is contained in:
Ermal 2014-11-11 20:57:48 +01:00
parent 1f2f38f509
commit 63ba47297f
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
etc/inc/vpn.inc
View File

@ -599,6 +599,8 @@ EOD;
case 'xauth_rsa_server':
$authentication = "leftauth = pubkey\n\trightauth = pubkey";
$authentication .= "\n\trightauth2 = xauth-generic";
if (!empty($ph1ent['certref']))
$authentication .= "\n\tleftcert={$certpath}/cert-{$ph1ent['ikeid']}.crt";
break;
case 'xauth_psk_server':
$authentication = "leftauth = psk\n\trightauth = psk";
@ -609,10 +611,14 @@ EOD;
break;
case 'rsasig':
$authentication = "leftauth = pubkey\n\trightauth = pubkey";
if (!empty($ph1ent['certref']))
$authentication .= "\n\tleftcert={$certpath}/cert-{$ph1ent['ikeid']}.crt";
break;
case 'hybrid_rsa_server':
$authentication = "leftauth = xauth-generic\n\trightauth = pubkey";
$authentication .= "\n\trightauth2 = xauth";
if (!empty($ph1ent['certref']))
$authentication .= "\n\tleftcert={$certpath}/cert-{$ph1ent['ikeid']}.crt";
break;
}