summaryrefslogtreecommitdiff
path: root/data/templates/ipsec/swanctl
diff options
context:
space:
mode:
authorViacheslav Hletenko <v.gletenko@vyos.io>2023-01-12 13:00:05 +0000
committerViacheslav Hletenko <v.gletenko@vyos.io>2023-01-12 17:47:53 +0000
commit01386606982352de7eb51f55acc11c6a58ed4cef (patch)
treedea795652a3bfbcdeb0307edbf5bb0c0dbfd9da2 /data/templates/ipsec/swanctl
parent68a036238522a210dc5c12fabd4ca833ab43d4bf (diff)
downloadvyos-1x-01386606982352de7eb51f55acc11c6a58ed4cef.tar.gz
vyos-1x-01386606982352de7eb51f55acc11c6a58ed4cef.zip
T4118: Add default value any for connection remote-id
If IPsec "peer <tag> authentication remote-id" is not set it should be "%any" by default https://docs.strongswan.org/docs/5.9/swanctl/swanctlConf.html#_connections_conn_remote Set XML default value in use it in the python vpn_ipsec.py script
Diffstat (limited to 'data/templates/ipsec/swanctl')
-rw-r--r--data/templates/ipsec/swanctl/peer.j24
1 files changed, 0 insertions, 4 deletions
diff --git a/data/templates/ipsec/swanctl/peer.j2 b/data/templates/ipsec/swanctl/peer.j2
index 837fa263c..9d95271fe 100644
--- a/data/templates/ipsec/swanctl/peer.j2
+++ b/data/templates/ipsec/swanctl/peer.j2
@@ -45,11 +45,7 @@
{% endif %}
}
remote {
-{% if peer_conf.authentication.remote_id is vyos_defined %}
id = "{{ peer_conf.authentication.remote_id }}"
-{% else %}
- id = "{{ peer }}"
-{% endif %}
auth = {{ 'psk' if peer_conf.authentication.mode == 'pre-shared-secret' else 'pubkey' }}
{% if peer_conf.authentication.mode == 'rsa' %}
pubkeys = {{ peer_conf.authentication.rsa.remote_key }}.pem