The net/strongswan port
strongswan-5.9.1p0 – IPsec-based VPN software (IKEv1/IKEv2) with XAUTH and EAP (cvsweb github mirror)
Description
strongSwan is reasonably portable open source VPN software supporting both IKEv1 and IKEv2. It has wide support for authentication types including IKEv1 XAUTH (username and password) and multiple IKEv2 EAP mechanisms on both server and client side. The OpenBSD port currently provides only the "kernel-libipsec" plugin. This operates in userland via tun(4) devices and strongSwan's own IPsec implementation rather than using kernel IPsec - it is suggested that this is only used for testing or in client situations where the native IPsec software (isakmpd and iked) does not support the required functionality.WWW: https://www.strongswan.org/
Readme
+-------------------------------------------------------------------------------
| Running ${PKGSTEM} on OpenBSD
+-------------------------------------------------------------------------------
Caveats
=======
This package currently provides only the "kernel-ipsec" plugin which operates
in userland via tun(4) devices and uses strongSwan's own IPsec implementation
rather than OpenBSD's kernel IPsec. It is not recommended for production use
on security gateways.
To use this plugin, kernel ESP handling must be disabled:
# sysctl net.inet.esp.enable=0
# sysctl net.inet.esp.udpencap=0
The kernel-pfkey plugin (which interfaces with kernel IPsec) has not yet
been ported to OpenBSD.
Example configuration
---------------------
This is for an IKEv2 client with EAP username/password authentication:
# cat /etc/strongswan/ipsec.conf
conn ikev2-eap-mschapv2
dpdaction=restart
dpddelay=30
dpdtimeout=90
fragmentation=yes
leftsourceip=%config
keyexchange=ikev2
leftauth=eap-mschapv2
eap_identity=username
rightauth=pubkey
right=vpn.example.net
rightid=@vpn.example.net
rightca="C=GB, ST=Cornwall, O=Example Net, CN=Example CA, E=hostmaster@example.net"
rightsubnet=10.71.0.0/18
auto=add
# cat /etc/strongswan/ipsec.secrets
username : EAP "password"
# ls -l /etc/strongswan/ipsec.d/cacerts/
total 8
-rw-r--r-- 1 root wheel 2106 Mar 30 00:05 example-ca.pem
# ipsec start
# ipsec up ikev2-eap-mschapv2
Maintainer
The OpenBSD ports mailing-list
Only for arches
aarch64 alpha amd64 arm hppa i386 mips64 mips64el powerpc powerpc64 riscv64 sparc64
Categories
Library dependencies
Build dependencies
Files
- /etc/strongswan/
- /etc/strongswan/ipsec.conf
- /etc/strongswan/ipsec.d/
- /etc/strongswan/ipsec.d/aacerts/
- /etc/strongswan/ipsec.d/acerts/
- /etc/strongswan/ipsec.d/cacerts/
- /etc/strongswan/ipsec.d/certs/
- /etc/strongswan/ipsec.d/crls/
- /etc/strongswan/ipsec.d/ocspcerts/
- /etc/strongswan/ipsec.d/private/
- /etc/strongswan/ipsec.d/reqs/
- /etc/strongswan/ipsec.secrets
- /etc/strongswan/strongswan.conf
- /etc/strongswan/strongswan.d/
- /etc/strongswan/strongswan.d/charon-logging.conf
- /etc/strongswan/strongswan.d/charon.conf
- /etc/strongswan/strongswan.d/charon/
- /etc/strongswan/strongswan.d/charon/aes.conf
- /etc/strongswan/strongswan.d/charon/aesni.conf
- /etc/strongswan/strongswan.d/charon/attr.conf
- /etc/strongswan/strongswan.d/charon/botan.conf
- /etc/strongswan/strongswan.d/charon/chapoly.conf
- /etc/strongswan/strongswan.d/charon/cmac.conf
- /etc/strongswan/strongswan.d/charon/constraints.conf
- /etc/strongswan/strongswan.d/charon/counters.conf
- /etc/strongswan/strongswan.d/charon/curve25519.conf
- /etc/strongswan/strongswan.d/charon/des.conf
- /etc/strongswan/strongswan.d/charon/dnskey.conf
- /etc/strongswan/strongswan.d/charon/eap-gtc.conf
- /etc/strongswan/strongswan.d/charon/eap-identity.conf
- /etc/strongswan/strongswan.d/charon/eap-mschapv2.conf
- /etc/strongswan/strongswan.d/charon/eap-peap.conf
- /etc/strongswan/strongswan.d/charon/eap-radius.conf
- /etc/strongswan/strongswan.d/charon/eap-tls.conf
- /etc/strongswan/strongswan.d/charon/eap-ttls.conf
- /etc/strongswan/strongswan.d/charon/fips-prf.conf
- /etc/strongswan/strongswan.d/charon/gcm.conf
- /etc/strongswan/strongswan.d/charon/gmp.conf
- /etc/strongswan/strongswan.d/charon/hmac.conf
- /etc/strongswan/strongswan.d/charon/kernel-libipsec.conf
- /etc/strongswan/strongswan.d/charon/kernel-pfroute.conf
- /etc/strongswan/strongswan.d/charon/md4.conf
- /etc/strongswan/strongswan.d/charon/md5.conf
- /etc/strongswan/strongswan.d/charon/mgf1.conf
- /etc/strongswan/strongswan.d/charon/nonce.conf
- /etc/strongswan/strongswan.d/charon/pem.conf
- /etc/strongswan/strongswan.d/charon/pgp.conf
- /etc/strongswan/strongswan.d/charon/pkcs1.conf
- /etc/strongswan/strongswan.d/charon/pkcs11.conf
- /etc/strongswan/strongswan.d/charon/pkcs12.conf
- /etc/strongswan/strongswan.d/charon/pkcs7.conf
- /etc/strongswan/strongswan.d/charon/pkcs8.conf
- /etc/strongswan/strongswan.d/charon/pubkey.conf
- /etc/strongswan/strongswan.d/charon/random.conf
- /etc/strongswan/strongswan.d/charon/rc2.conf
- /etc/strongswan/strongswan.d/charon/resolve.conf
- /etc/strongswan/strongswan.d/charon/revocation.conf
- /etc/strongswan/strongswan.d/charon/sha1.conf
- /etc/strongswan/strongswan.d/charon/sha2.conf
- /etc/strongswan/strongswan.d/charon/socket-default.conf
- /etc/strongswan/strongswan.d/charon/sshkey.conf
- /etc/strongswan/strongswan.d/charon/stroke.conf
- /etc/strongswan/strongswan.d/charon/updown.conf
- /etc/strongswan/strongswan.d/charon/vici.conf
- /etc/strongswan/strongswan.d/charon/x509.conf
- /etc/strongswan/strongswan.d/charon/xauth-eap.conf
- /etc/strongswan/strongswan.d/charon/xauth-generic.conf
- /etc/strongswan/strongswan.d/charon/xcbc.conf
- /etc/strongswan/strongswan.d/pki.conf
- /etc/strongswan/strongswan.d/scepclient.conf
- /etc/strongswan/strongswan.d/starter.conf
- /etc/strongswan/strongswan.d/swanctl.conf
- /etc/strongswan/swanctl/
- /etc/strongswan/swanctl/bliss/
- /etc/strongswan/swanctl/conf.d/
- /etc/strongswan/swanctl/ecdsa/
- /etc/strongswan/swanctl/pkcs12/
- /etc/strongswan/swanctl/pkcs8/
- /etc/strongswan/swanctl/private/
- /etc/strongswan/swanctl/pubkey/
- /etc/strongswan/swanctl/rsa/
- /etc/strongswan/swanctl/swanctl.conf
- /etc/strongswan/swanctl/x509/
- /etc/strongswan/swanctl/x509aa/
- /etc/strongswan/swanctl/x509ac/
- /etc/strongswan/swanctl/x509ca/
- /etc/strongswan/swanctl/x509crl/
- /etc/strongswan/swanctl/x509ocsp/
- /usr/local/bin/pki
- /usr/local/lib/ipsec/
- /usr/local/lib/ipsec/libcharon.so.0.0
- /usr/local/lib/ipsec/libipsec.so.0.0
- /usr/local/lib/ipsec/libradius.so.0.0
- /usr/local/lib/ipsec/libstrongswan.so.0.0
- /usr/local/lib/ipsec/libtls.so.0.0
- /usr/local/lib/ipsec/libvici.so.0.0
- /usr/local/lib/ipsec/plugins/
- /usr/local/lib/ipsec/plugins/libstrongswan-aes.so
- /usr/local/lib/ipsec/plugins/libstrongswan-aesni.so
- /usr/local/lib/ipsec/plugins/libstrongswan-attr.so
- /usr/local/lib/ipsec/plugins/libstrongswan-botan.so
- /usr/local/lib/ipsec/plugins/libstrongswan-chapoly.so
- /usr/local/lib/ipsec/plugins/libstrongswan-cmac.so
- /usr/local/lib/ipsec/plugins/libstrongswan-constraints.so
- /usr/local/lib/ipsec/plugins/libstrongswan-counters.so
- /usr/local/lib/ipsec/plugins/libstrongswan-curve25519.so
- /usr/local/lib/ipsec/plugins/libstrongswan-des.so
- /usr/local/lib/ipsec/plugins/libstrongswan-dnskey.so
- /usr/local/lib/ipsec/plugins/libstrongswan-drbg.so
- /usr/local/lib/ipsec/plugins/libstrongswan-eap-gtc.so
- /usr/local/lib/ipsec/plugins/libstrongswan-eap-identity.so
- /usr/local/lib/ipsec/plugins/libstrongswan-eap-mschapv2.so
- /usr/local/lib/ipsec/plugins/libstrongswan-eap-peap.so
- /usr/local/lib/ipsec/plugins/libstrongswan-eap-radius.so
- /usr/local/lib/ipsec/plugins/libstrongswan-eap-tls.so
- /usr/local/lib/ipsec/plugins/libstrongswan-eap-ttls.so
- /usr/local/lib/ipsec/plugins/libstrongswan-fips-prf.so
- /usr/local/lib/ipsec/plugins/libstrongswan-gcm.so
- /usr/local/lib/ipsec/plugins/libstrongswan-gmp.so
- /usr/local/lib/ipsec/plugins/libstrongswan-hmac.so
- /usr/local/lib/ipsec/plugins/libstrongswan-kernel-libipsec.so
- /usr/local/lib/ipsec/plugins/libstrongswan-kernel-pfroute.so
- /usr/local/lib/ipsec/plugins/libstrongswan-md4.so
- /usr/local/lib/ipsec/plugins/libstrongswan-md5.so
- /usr/local/lib/ipsec/plugins/libstrongswan-mgf1.so
- /usr/local/lib/ipsec/plugins/libstrongswan-nonce.so
- /usr/local/lib/ipsec/plugins/libstrongswan-pem.so
- /usr/local/lib/ipsec/plugins/libstrongswan-pgp.so
- /usr/local/lib/ipsec/plugins/libstrongswan-pkcs1.so
- /usr/local/lib/ipsec/plugins/libstrongswan-pkcs11.so
- /usr/local/lib/ipsec/plugins/libstrongswan-pkcs12.so
- /usr/local/lib/ipsec/plugins/libstrongswan-pkcs7.so
- /usr/local/lib/ipsec/plugins/libstrongswan-pkcs8.so
- /usr/local/lib/ipsec/plugins/libstrongswan-pubkey.so
- /usr/local/lib/ipsec/plugins/libstrongswan-random.so
- /usr/local/lib/ipsec/plugins/libstrongswan-rc2.so
- /usr/local/lib/ipsec/plugins/libstrongswan-resolve.so
- /usr/local/lib/ipsec/plugins/libstrongswan-revocation.so
- /usr/local/lib/ipsec/plugins/libstrongswan-sha1.so
- /usr/local/lib/ipsec/plugins/libstrongswan-sha2.so
- /usr/local/lib/ipsec/plugins/libstrongswan-socket-default.so
- /usr/local/lib/ipsec/plugins/libstrongswan-sshkey.so
- /usr/local/lib/ipsec/plugins/libstrongswan-stroke.so
- /usr/local/lib/ipsec/plugins/libstrongswan-updown.so
- /usr/local/lib/ipsec/plugins/libstrongswan-vici.so
- /usr/local/lib/ipsec/plugins/libstrongswan-x509.so
- /usr/local/lib/ipsec/plugins/libstrongswan-xauth-eap.so
- /usr/local/lib/ipsec/plugins/libstrongswan-xauth-generic.so
- /usr/local/lib/ipsec/plugins/libstrongswan-xcbc.so
- /usr/local/libexec/ipsec/
- /usr/local/libexec/ipsec/_copyright
- /usr/local/libexec/ipsec/_updown
- /usr/local/libexec/ipsec/charon
- /usr/local/libexec/ipsec/scepclient
- /usr/local/libexec/ipsec/starter
- /usr/local/libexec/ipsec/stroke
- /usr/local/man/man1/pki---acert.1
- /usr/local/man/man1/pki---dn.1
- /usr/local/man/man1/pki---gen.1
- /usr/local/man/man1/pki---issue.1
- /usr/local/man/man1/pki---keyid.1
- /usr/local/man/man1/pki---pkcs7.1
- /usr/local/man/man1/pki---print.1
- /usr/local/man/man1/pki---pub.1
- /usr/local/man/man1/pki---req.1
- /usr/local/man/man1/pki---self.1
- /usr/local/man/man1/pki---signcrl.1
- /usr/local/man/man1/pki---verify.1
- /usr/local/man/man1/pki.1
- /usr/local/man/man5/ipsec.conf.5
- /usr/local/man/man5/ipsec.secrets.5
- /usr/local/man/man5/strongswan.conf.5
- /usr/local/man/man5/swanctl.conf.5
- /usr/local/man/man8/ipsec.8
- /usr/local/man/man8/scepclient.8
- /usr/local/man/man8/swanctl.8
- /usr/local/sbin/ipsec
- /usr/local/sbin/swanctl
- /usr/local/share/doc/pkg-readmes/strongswan
- /usr/local/share/examples/strongswan/
- /usr/local/share/examples/strongswan/ipsec.conf
- /usr/local/share/examples/strongswan/ipsec.d/
- /usr/local/share/examples/strongswan/ipsec.d/aacerts/
- /usr/local/share/examples/strongswan/ipsec.d/acerts/
- /usr/local/share/examples/strongswan/ipsec.d/cacerts/
- /usr/local/share/examples/strongswan/ipsec.d/certs/
- /usr/local/share/examples/strongswan/ipsec.d/crls/
- /usr/local/share/examples/strongswan/ipsec.d/ocspcerts/
- /usr/local/share/examples/strongswan/ipsec.d/private/
- /usr/local/share/examples/strongswan/ipsec.d/reqs/
- /usr/local/share/examples/strongswan/ipsec.secrets
- /usr/local/share/examples/strongswan/strongswan.conf
- /usr/local/share/examples/strongswan/strongswan.d/
- /usr/local/share/examples/strongswan/strongswan.d/charon-logging.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/
- /usr/local/share/examples/strongswan/strongswan.d/charon/aes.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/aesni.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/attr.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/botan.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/chapoly.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/cmac.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/constraints.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/counters.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/curve25519.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/des.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/dnskey.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/drbg.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/eap-gtc.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/eap-identity.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/eap-mschapv2.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/eap-peap.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/eap-radius.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/eap-tls.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/eap-ttls.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/fips-prf.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/gcm.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/gmp.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/hmac.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/kernel-libipsec.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/kernel-pfroute.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/md4.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/md5.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/mgf1.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/nonce.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/pem.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/pgp.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/pkcs1.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/pkcs11.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/pkcs12.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/pkcs7.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/pkcs8.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/pubkey.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/random.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/rc2.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/resolve.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/revocation.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/sha1.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/sha2.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/socket-default.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/sshkey.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/stroke.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/updown.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/vici.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/x509.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/xauth-eap.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/xauth-generic.conf
- /usr/local/share/examples/strongswan/strongswan.d/charon/xcbc.conf
- /usr/local/share/examples/strongswan/strongswan.d/pki.conf
- /usr/local/share/examples/strongswan/strongswan.d/scepclient.conf
- /usr/local/share/examples/strongswan/strongswan.d/starter.conf
- /usr/local/share/examples/strongswan/strongswan.d/swanctl.conf
- /usr/local/share/examples/strongswan/swanctl/
- /usr/local/share/examples/strongswan/swanctl/bliss/
- /usr/local/share/examples/strongswan/swanctl/conf.d/
- /usr/local/share/examples/strongswan/swanctl/ecdsa/
- /usr/local/share/examples/strongswan/swanctl/pkcs12/
- /usr/local/share/examples/strongswan/swanctl/pkcs8/
- /usr/local/share/examples/strongswan/swanctl/private/
- /usr/local/share/examples/strongswan/swanctl/pubkey/
- /usr/local/share/examples/strongswan/swanctl/rsa/
- /usr/local/share/examples/strongswan/swanctl/swanctl.conf
- /usr/local/share/examples/strongswan/swanctl/x509/
- /usr/local/share/examples/strongswan/swanctl/x509aa/
- /usr/local/share/examples/strongswan/swanctl/x509ac/
- /usr/local/share/examples/strongswan/swanctl/x509ca/
- /usr/local/share/examples/strongswan/swanctl/x509crl/
- /usr/local/share/examples/strongswan/swanctl/x509ocsp/
- /usr/local/share/strongswan/
- /usr/local/share/strongswan/templates/
- /usr/local/share/strongswan/templates/config/
- /usr/local/share/strongswan/templates/config/plugins/
- /usr/local/share/strongswan/templates/config/plugins/aes.conf
- /usr/local/share/strongswan/templates/config/plugins/aesni.conf
- /usr/local/share/strongswan/templates/config/plugins/attr.conf
- /usr/local/share/strongswan/templates/config/plugins/botan.conf
- /usr/local/share/strongswan/templates/config/plugins/chapoly.conf
- /usr/local/share/strongswan/templates/config/plugins/cmac.conf
- /usr/local/share/strongswan/templates/config/plugins/constraints.conf
- /usr/local/share/strongswan/templates/config/plugins/counters.conf
- /usr/local/share/strongswan/templates/config/plugins/curve25519.conf
- /usr/local/share/strongswan/templates/config/plugins/des.conf
- /usr/local/share/strongswan/templates/config/plugins/dnskey.conf
- /usr/local/share/strongswan/templates/config/plugins/drbg.conf
- /usr/local/share/strongswan/templates/config/plugins/eap-gtc.conf
- /usr/local/share/strongswan/templates/config/plugins/eap-identity.conf
- /usr/local/share/strongswan/templates/config/plugins/eap-mschapv2.conf
- /usr/local/share/strongswan/templates/config/plugins/eap-peap.conf
- /usr/local/share/strongswan/templates/config/plugins/eap-radius.conf
- /usr/local/share/strongswan/templates/config/plugins/eap-tls.conf
- /usr/local/share/strongswan/templates/config/plugins/eap-ttls.conf
- /usr/local/share/strongswan/templates/config/plugins/fips-prf.conf
- /usr/local/share/strongswan/templates/config/plugins/gcm.conf
- /usr/local/share/strongswan/templates/config/plugins/gmp.conf
- /usr/local/share/strongswan/templates/config/plugins/hmac.conf
- /usr/local/share/strongswan/templates/config/plugins/kernel-libipsec.conf
- /usr/local/share/strongswan/templates/config/plugins/kernel-pfroute.conf
- /usr/local/share/strongswan/templates/config/plugins/md4.conf
- /usr/local/share/strongswan/templates/config/plugins/md5.conf
- /usr/local/share/strongswan/templates/config/plugins/mgf1.conf
- /usr/local/share/strongswan/templates/config/plugins/nonce.conf
- /usr/local/share/strongswan/templates/config/plugins/pem.conf
- /usr/local/share/strongswan/templates/config/plugins/pgp.conf
- /usr/local/share/strongswan/templates/config/plugins/pkcs1.conf
- /usr/local/share/strongswan/templates/config/plugins/pkcs11.conf
- /usr/local/share/strongswan/templates/config/plugins/pkcs12.conf
- /usr/local/share/strongswan/templates/config/plugins/pkcs7.conf
- /usr/local/share/strongswan/templates/config/plugins/pkcs8.conf
- /usr/local/share/strongswan/templates/config/plugins/pubkey.conf
- /usr/local/share/strongswan/templates/config/plugins/random.conf
- /usr/local/share/strongswan/templates/config/plugins/rc2.conf
- /usr/local/share/strongswan/templates/config/plugins/resolve.conf
- /usr/local/share/strongswan/templates/config/plugins/revocation.conf
- /usr/local/share/strongswan/templates/config/plugins/sha1.conf
- /usr/local/share/strongswan/templates/config/plugins/sha2.conf
- /usr/local/share/strongswan/templates/config/plugins/socket-default.conf
- /usr/local/share/strongswan/templates/config/plugins/sshkey.conf
- /usr/local/share/strongswan/templates/config/plugins/stroke.conf
- /usr/local/share/strongswan/templates/config/plugins/updown.conf
- /usr/local/share/strongswan/templates/config/plugins/vici.conf
- /usr/local/share/strongswan/templates/config/plugins/x509.conf
- /usr/local/share/strongswan/templates/config/plugins/xauth-eap.conf
- /usr/local/share/strongswan/templates/config/plugins/xauth-generic.conf
- /usr/local/share/strongswan/templates/config/plugins/xcbc.conf
- /usr/local/share/strongswan/templates/config/strongswan.conf
- /usr/local/share/strongswan/templates/config/strongswan.d/
- /usr/local/share/strongswan/templates/config/strongswan.d/charon-logging.conf
- /usr/local/share/strongswan/templates/config/strongswan.d/charon.conf
- /usr/local/share/strongswan/templates/config/strongswan.d/pki.conf
- /usr/local/share/strongswan/templates/config/strongswan.d/scepclient.conf
- /usr/local/share/strongswan/templates/config/strongswan.d/starter.conf
- /usr/local/share/strongswan/templates/config/strongswan.d/swanctl.conf