[21전국] 1과제 3. S2S VPN

A-EDGE, B-EDGE

#apt –y install strongswan

A-M

#cd /etc/ssl

#openssl req –new –out a.req –newkey rsa:2048 –nodes –keyout a.key

※CN은 100.0.0.1

#openssl ca –in a.req –out a.crt

#openssl req –new –out b.req –newkey rsa:2048 –nodes –keyout b.key

※CN은 100.0.1.1

#openssl ca –in b.req –out b.crt

 

A-EDGE
#scp 192.168.0.1:/etc/ssl/alpha/cacert.pem /etc/ipsec.d/cacerts/

#scp 192.168.0.1:/etc/ssl/*.crt /etc/ipsec.d/certs/

#scp 192.168.0.1:/etc/ssl/*.key /etc/ipsec.d/private/

#vim /etc/ipsec.conf

#vim /etc/ipsec.secrets

 

 

#systemctl restart strongswan

B-EDGE
#scp –r 100.0.0.1:/etc/ipsec.* /etc/

#vim /etc/ipsec.conf

 

 

 

#vim /etc/ipsec.secrets

 

 

#systemctl restart strongswan