mirrors/dockerfiles_vimagick
2
0
Fork 0
mirror of https://github.com/vimagick/dockerfiles.git synced 2025-12-21 21:33:02 +01:00
Code Issues Projects Releases Wiki Activity

strongswan: Split-Tunneling with IKEv2

Browse Source
This commit is contained in:
kev
2016-07-01 00:09:28 +08:00
parent d69b80858a
commit 4e1695de82
4 changed files with 5 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
strongswan/Dockerfile
View File

@@ -17,6 +17,7 @@ VOLUME /etc/ipsec.d /etc/strongswan.d
ENV VPN_DEVICE=eth0 ENV VPN_DEVICE=eth0
ENV VPN_NETWORK=10.20.30.0/24 ENV VPN_NETWORK=10.20.30.0/24
ENV LAN_NETWORK=192.168.0.0/16
ENV VPN_DNS=8.8.8.8,8.8.4.4 ENV VPN_DNS=8.8.8.8,8.8.4.4
EXPOSE 500/udp 4500/udp EXPOSE 500/udp 4500/udp

3
strongswan/README.md
View File

@@ -25,9 +25,8 @@ services:
environment: environment:
- VPN_DOMAIN=vpn.easypi.info - VPN_DOMAIN=vpn.easypi.info
- VPN_NETWORK=10.20.30.0/24 - VPN_NETWORK=10.20.30.0/24
- LAN_NETWORK=192.168.0.0/16
- VPN_P12_PASSWORD=secret - VPN_P12_PASSWORD=secret
cap_add:
- NET_ADMIN
tmpfs: /run tmpfs: /run
privileged: yes privileged: yes
restart: always restart: always

3
strongswan/docker-compose.yml
View File

@@ -11,9 +11,8 @@ services:
environment: environment:
- VPN_DOMAIN=vpn.easypi.info - VPN_DOMAIN=vpn.easypi.info
- VPN_NETWORK=10.20.30.0/24 - VPN_NETWORK=10.20.30.0/24
- LAN_NETWORK=192.168.0.0/16
- VPN_P12_PASSWORD=secret - VPN_P12_PASSWORD=secret
cap_add:
- NET_ADMIN
tmpfs: /run tmpfs: /run
privileged: yes privileged: yes
restart: always restart: always

2
strongswan/init.sh
View File

@@ -5,6 +5,7 @@
# - VPN_DNS # - VPN_DNS
# - VPN_DOMAIN # - VPN_DOMAIN
# - VPN_NETWORK # - VPN_NETWORK
# - LAN_NETWORK
# - VPN_P12_PASSWORD # - VPN_P12_PASSWORD
# #
@@ -33,6 +34,7 @@ conn %default
right=%any right=%any
rightdns=${VPN_DNS} rightdns=${VPN_DNS}
rightsourceip=${VPN_NETWORK} rightsourceip=${VPN_NETWORK}
rightsubnets=${LAN_NETWORK}
conn IPSec-IKEv2 conn IPSec-IKEv2
keyexchange=ikev2 keyexchange=ikev2