panakuma · March 25, 2019 19:44
diff --git a/VyOSとRTX1200でIPSec over IPv6 (Vyos側がレスポンダ) b/VyOSとRTX1200でIPSec over IPv6 (Vyos側がレスポンダ)
 tunnel select 100
 description tunnel myskng
 ipsec tunnel 100
  ipsec sa policy 100 100 esp aes-cbc sha-hmac
  ipsec ike version 100 2
  ipsec ike always-on 100 on
  ipsec ike encryption 100 3des-cbc
  ipsec ike hash 100 sha
  ipsec ike group 100 modp1024
  ipsec ike keepalive log 100 off
  ipsec ike keepalive use 100 on heartbeat 10 6
  ipsec ike local name 100 <自分のID(好きな文字列)> fqdn
  ipsec ike payload type 100 3 2
  ipsec ike pfs 100 on
  ipsec ike pre-shared-key 100 text <パスワード>
  ipsec ike remote address 100 <相手のIPv6アドレス>
  ipsec ike remote name 100 <相手のID(好きな文字列)> fqdn
  ipsec auto refresh 100 on
 ip tunnel tcp mss limit auto
 tunnel enable 100
 
 # VyOS側の設定
 # https://gist.github.com/tumugin/1251efafdcde355777c0df497f4a85ca
	tunnel select 100
	description tunnel myskng
	ipsec tunnel 100
	ipsec sa policy 100 100 esp aes-cbc sha-hmac
	ipsec ike version 100 2
	ipsec ike always-on 100 on
	ipsec ike encryption 100 3des-cbc
	ipsec ike hash 100 sha
	ipsec ike group 100 modp1024
	ipsec ike keepalive log 100 off
	ipsec ike keepalive use 100 on heartbeat 10 6
	ipsec ike local name 100 <自分のID(好きな文字列)> fqdn
	ipsec ike payload type 100 3 2
	ipsec ike pfs 100 on
	ipsec ike pre-shared-key 100 text <パスワード>
	ipsec ike remote address 100 <相手のIPv6アドレス>
	ipsec ike remote name 100 <相手のID(好きな文字列)> fqdn
	ipsec auto refresh 100 on
	ip tunnel tcp mss limit auto
	tunnel enable 100

	# VyOS側の設定
	# https://gist.github.com/tumugin/1251efafdcde355777c0df497f4a85ca