diff options
Diffstat (limited to 'roles/common/tasks/ipsec.yml')
| -rw-r--r-- | roles/common/tasks/ipsec.yml | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/roles/common/tasks/ipsec.yml b/roles/common/tasks/ipsec.yml index 5e0115e..d773c1c 100644 --- a/roles/common/tasks/ipsec.yml +++ b/roles/common/tasks/ipsec.yml @@ -1,8 +1,9 @@ - name: Install strongSwan apt: pkg=strongswan-ikev2 -- name: Generate a key pair for IPSec - command: genkeypair.sh --pubkey=/etc/ipsec.d/certs/{{ inventory_hostname }}.pem +- name: Generate a private key and a X.509 certificate for IPSec + command: genkeypair.sh x509 + --pubkey=/etc/ipsec.d/certs/{{ inventory_hostname }}.pem --privkey=/etc/ipsec.d/private/{{ inventory_hostname }}.key --dns {{ inventory_hostname }} -t ecdsa -b secp521r1 -h sha512 |