From e63b5f5e39e2012bbdf1ca8301c6eb2cd13716cb Mon Sep 17 00:00:00 2001
From: Guilhem Moulin <guilhem@fripost.org>
Date: Wed, 2 Jul 2014 20:52:27 +0200
Subject: Remove IPSec related files.

---
 roles/common/templates/etc/ipsec.conf.j2    | 30 -----------------------------
 roles/common/templates/etc/ipsec.secrets.j2 |  5 -----
 2 files changed, 35 deletions(-)
 delete mode 100644 roles/common/templates/etc/ipsec.conf.j2
 delete mode 100644 roles/common/templates/etc/ipsec.secrets.j2

(limited to 'roles/common/templates')

diff --git a/roles/common/templates/etc/ipsec.conf.j2 b/roles/common/templates/etc/ipsec.conf.j2
deleted file mode 100644
index 1dbcdbd..0000000
--- a/roles/common/templates/etc/ipsec.conf.j2
+++ /dev/null
@@ -1,30 +0,0 @@
-# {{ ansible_managed }}
-# Do NOT edit this file directly!
-
-config setup
-    plutostart = no
-
-# Add connections here.
-
-conn %default
-    keyexchange  = ikev2
-    ikelifetime  = 1h
-    keylife      = 15m
-    rekeymargin  = 3m
-    keyingtries  = 1
-    esp          = aes128gcm16-ecp256!
-    ike          = aes128gcm16-aesxcbc-ecp256!
-    # TODO: test DynDNS
-    mobike       = no
-    leftauth     = pubkey
-    left         = %defaultroute
-    leftcert     = {{ inventory_hostname }}.pem
-    leftfirewall = yes
-    rightauth    = pubkey
-    auto         = start
-{% for host in groups.all | difference([inventory_hostname]) | sort %}
-
-conn {{ host }}
-    right     = {{ hostvars[host]['inventory_hostname'] }}
-    rightcert = {{ hostvars[host]['inventory_hostname'] }}.pem
-{%- endfor %}
diff --git a/roles/common/templates/etc/ipsec.secrets.j2 b/roles/common/templates/etc/ipsec.secrets.j2
deleted file mode 100644
index da707bd..0000000
--- a/roles/common/templates/etc/ipsec.secrets.j2
+++ /dev/null
@@ -1,5 +0,0 @@
-# {{ ansible_managed }}
-# Do NOT edit this file directly!
-
-# Our VPN uses ECC only.
-: ECDSA {{ inventory_hostname }}.key
-- 
cgit v1.2.3