ipsec:/usr/local/strongswan/etc# cat ipsec.conf
# /etc/ipsec.conf - strongSwan IPsec configuration file
# ipsec.conf - strongSwan IPsec configuration file
ca vpnca
cacert=cacert.pem
config setup
plutostart=no
conn t.mebes
left=%defaultroute
leftcert=servercert.pem
right=%any
rightsourceip=192.168.77.3/32
rightid="C=DE, ST=Bavaria, O=Kaut-Bullinger & CO GmbH & Co. KG, OU=IT, CN=t.mebes"
auto=add
Apr 20 17:14:17 ipsec charon: 00[DMN] Starting IKEv2 charon daemon (strongSwan 4.4.0dr4)
Apr 20 17:14:17 ipsec charon: 00[KNL] listening on interfaces:
Apr 20 17:14:17 ipsec charon: 00[KNL] eth0
Apr 20 17:14:17 ipsec charon: 00[KNL] 193.108.19.167
Apr 20 17:14:17 ipsec charon: 00[KNL] fe80::216:3eff:fe36:4be5
Apr 20 17:14:17 ipsec charon: 00[CFG] loading ca certificates from '/usr/local/strongswan/etc/ipsec.d/cacerts'
Apr 20 17:14:17 ipsec charon: 00[CFG] loading aa certificates from '/usr/local/strongswan/etc/ipsec.d/aacerts'
Apr 20 17:14:17 ipsec charon: 00[CFG] loaded certificate "C=DE, ST=Bavaria, L=Taufkirchen, O=Kaut-Bullinger & CO GmbH & Co. KG, OU=IT, CN=IPSEC-Server" from '/usr/local/strongswan/etc/ipsec.d/aacerts/cacert.pem'
Apr 20 17:14:17 ipsec charon: 00[CFG] loading ocsp signer certificates from '/usr/local/strongswan/etc/ipsec.d/ocspcerts'
Apr 20 17:14:17 ipsec charon: 00[CFG] loading attribute certificates from '/usr/local/strongswan/etc/ipsec.d/acerts'
Apr 20 17:14:17 ipsec charon: 00[CFG] loading crls from '/usr/local/strongswan/etc/ipsec.d/crls'
Apr 20 17:14:17 ipsec charon: 00[CFG] loading secrets from '/usr/local/strongswan/etc/ipsec.secrets'
Apr 20 17:14:17 ipsec charon: 00[CFG] loaded IKE secret for @ipsec.freeline.eu
Apr 20 17:14:17 ipsec charon: 00[CFG] loaded EAP secret for %any
Apr 20 17:14:17 ipsec charon: 00[DMN] loaded plugins: aes des sha1 sha2 md5 random x509 pubkey pkcs1 pgp dnskey pem fips-prf xcbc hmac gmp attr kernel-netlink socket-raw stroke updown resolve
Apr 20 17:14:17 ipsec charon: 00[JOB] spawning 16 worker threads
Apr 20 17:14:17 ipsec charon: 04[CFG] received stroke: add connection 't.mebes'
Apr 20 17:14:17 ipsec charon: 04[CFG] loaded certificate "C=DE, ST=Bavaria, O=Kaut-Bullinger & CO GmbH & Co. KG, OU=IT, CN=ipsec.freeline.eu" from 'servercert.pem'
Apr 20 17:14:17 ipsec charon: 04[CFG] id '193.108.19.167' not confirmed by certificate, defaulting to 'C=DE, ST=Bavaria, O=Kaut-Bullinger & CO GmbH & Co. KG, OU=IT, CN=ipsec.freeline.eu'
Apr 20 17:14:17 ipsec charon: 04[CFG] added configuration 't.mebes'
Apr 20 17:14:17 ipsec charon: 04[CFG] adding virtual IP address pool 't.mebes': 192.168.77.3/32