summaryrefslogtreecommitdiffstats
path: root/roles/common/templates/etc
diff options
context:
space:
mode:
authorGuilhem Moulin <guilhem@fripost.org>2014-07-02 20:52:27 +0200
committerGuilhem Moulin <guilhem@fripost.org>2015-06-07 02:52:19 +0200
commite63b5f5e39e2012bbdf1ca8301c6eb2cd13716cb (patch)
tree4bddb44aa939edcd1c0e9204a057e8983b9d9fb6 /roles/common/templates/etc
parent9ff10c0ebe4d74f433d696232aa57c6a2c9e2aba (diff)
Remove IPSec related files.
Diffstat (limited to 'roles/common/templates/etc')
-rw-r--r--roles/common/templates/etc/ipsec.conf.j230
-rw-r--r--roles/common/templates/etc/ipsec.secrets.j25
2 files changed, 0 insertions, 35 deletions
diff --git a/roles/common/templates/etc/ipsec.conf.j2 b/roles/common/templates/etc/ipsec.conf.j2
deleted file mode 100644
index 1dbcdbd..0000000
--- a/roles/common/templates/etc/ipsec.conf.j2
+++ /dev/null
@@ -1,30 +0,0 @@
-# {{ ansible_managed }}
-# Do NOT edit this file directly!
-
-config setup
- plutostart = no
-
-# Add connections here.
-
-conn %default
- keyexchange = ikev2
- ikelifetime = 1h
- keylife = 15m
- rekeymargin = 3m
- keyingtries = 1
- esp = aes128gcm16-ecp256!
- ike = aes128gcm16-aesxcbc-ecp256!
- # TODO: test DynDNS
- mobike = no
- leftauth = pubkey
- left = %defaultroute
- leftcert = {{ inventory_hostname }}.pem
- leftfirewall = yes
- rightauth = pubkey
- auto = start
-{% for host in groups.all | difference([inventory_hostname]) | sort %}
-
-conn {{ host }}
- right = {{ hostvars[host]['inventory_hostname'] }}
- rightcert = {{ hostvars[host]['inventory_hostname'] }}.pem
-{%- endfor %}
diff --git a/roles/common/templates/etc/ipsec.secrets.j2 b/roles/common/templates/etc/ipsec.secrets.j2
deleted file mode 100644
index da707bd..0000000
--- a/roles/common/templates/etc/ipsec.secrets.j2
+++ /dev/null
@@ -1,5 +0,0 @@
-# {{ ansible_managed }}
-# Do NOT edit this file directly!
-
-# Our VPN uses ECC only.
-: ECDSA {{ inventory_hostname }}.key