diff options
author | Viacheslav Hletenko <v.gletenko@vyos.io> | 2023-01-12 13:00:05 +0000 |
---|---|---|
committer | Viacheslav Hletenko <v.gletenko@vyos.io> | 2023-01-12 17:47:53 +0000 |
commit | 01386606982352de7eb51f55acc11c6a58ed4cef (patch) | |
tree | dea795652a3bfbcdeb0307edbf5bb0c0dbfd9da2 /data/templates/ipsec/swanctl | |
parent | 68a036238522a210dc5c12fabd4ca833ab43d4bf (diff) | |
download | vyos-1x-01386606982352de7eb51f55acc11c6a58ed4cef.tar.gz vyos-1x-01386606982352de7eb51f55acc11c6a58ed4cef.zip |
T4118: Add default value any for connection remote-id
If IPsec "peer <tag> authentication remote-id" is not set
it should be "%any" by default
https://docs.strongswan.org/docs/5.9/swanctl/swanctlConf.html#_connections_conn_remote
Set XML default value in use it in the python vpn_ipsec.py script
Diffstat (limited to 'data/templates/ipsec/swanctl')
-rw-r--r-- | data/templates/ipsec/swanctl/peer.j2 | 4 |
1 files changed, 0 insertions, 4 deletions
diff --git a/data/templates/ipsec/swanctl/peer.j2 b/data/templates/ipsec/swanctl/peer.j2 index 837fa263c..9d95271fe 100644 --- a/data/templates/ipsec/swanctl/peer.j2 +++ b/data/templates/ipsec/swanctl/peer.j2 @@ -45,11 +45,7 @@ {% endif %} } remote { -{% if peer_conf.authentication.remote_id is vyos_defined %} id = "{{ peer_conf.authentication.remote_id }}" -{% else %} - id = "{{ peer }}" -{% endif %} auth = {{ 'psk' if peer_conf.authentication.mode == 'pre-shared-secret' else 'pubkey' }} {% if peer_conf.authentication.mode == 'rsa' %} pubkeys = {{ peer_conf.authentication.rsa.remote_key }}.pem |