ipsec

Manages IPsec on linux machines.

Dmitriy Yakovlev

bibigon812

6,252 downloads

5,629 latest version

4.6 quality score

Version information

  • 0.2.3 (latest)
  • 0.2.2
  • 0.2.1
  • 0.2.0
  • 0.1.4
  • 0.1.3
  • 0.1.2
  • 0.1.1
  • 0.1.0
released Dec 8th 2016
This version is compatible with:
  • CentOS
    ,
    RedHat

Start using this module

Documentation

bibigon812/ipsec — version 0.2.3 Dec 8th 2016

Build Status

Overview

This module provides controls IPsec connections.

Classes

  • ::ipsec - class for managing of the IPsec service.
  • ::ipsec::sa - class for managing Secret Association.
  • ::ipsec::secrets - class for managing secrets of the pair [leftid, rightid]

Example

Add configuration

ipsec { 'IPSEC': }

ipsec::sa { 'TEST-SA-1':
  left           => '192.168.1.1',
  leftprotoport  => all,
  leftsourceip   => '10.0.0.1',
  leftsubnet     => '10.0.0.1/32',
  right          => '192.168.2.1',
  rightprotoport => all,
  rightsubnet    => '10.0.0.2/32',
  auto           => add,
  ike            => 'aes256-sha;dh24',
}

ipsec::secrets { 'TEST-SECRETS-1':
  leftid  => '192.168.1.1',
  rightid => '192.168.2.1',
  psk     => 'preshared secret key',
}

Remove configuration:

ipsec { 'IPSEC': }

ipsec::sa { 'TEST-SA-1':
  ensure => absent,
}

ipsec::secrets { 'TEST-SECRETS-1':
  ensure  => absent,
}