/usr/share/doc/secvpn/examples/secvpn.conf.1 is in secvpn 2.23.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 | # Example 1: Secvpn acts as router connecting 2 subnets.
# Each subnet itself is secure. But the Internet is unsecure.
#
# Secure Subnet 1 / / Secure Subnet 2
# / Unsecure /
# [hosts1] [secvpn1] / Internet / [secvpn2] [hosts2]
# X.X.X.n eth0:X.X.X.1 / ISDN / eth0:Y.Y.Y.1 Y.Y.Y.n
# eth1:I.I.I.1 / / eth1:J.J.J.1
#
# ToDo:
# The hosts1 should be able to communicate secure with hosts2 over an
# unsecure network. Secvpn1/secvpn2 are used as routers that connect
# the secure subnet to the internet.
# Hosts1/hosts2 have routing entries using secvpn1/secvpn2 to reach
# hosts2/hosts1.
#
THIS_IS="`hostname`"
VPNS="secvpn1->secvpn2"
CRYPT_MASK="255.255.255.0"
SSHPORT="22"
secvpn1()
{
GOOD_ONES="X.X.X.0/24"
GOOD_IP="X.X.X.1"
}
secvpn2()
{
GOOD_ONES="Y.Y.Y.0/24"
GOOD_IP="Y.Y.Y.1"
}
vpn_secvpn1_secvpn2()
{
# -----------
# | secvpn1 |----------------+
# ----------- |
# | |
# | # ppp-DEV
T_BAD_IP="I.I.I.1"; T_CRYPT_IP="10.1.1.1"
# | |
# | # ppp-DEV
O_BAD_IP="J.J.J.1"; O_CRYPT_IP="10.1.1.2"
# | |
# ----------- |
# | secvpn2 |----------------+
# -----------
}
|