Update IKEv2 script

- Make IKEv2 client address pool customizable using VPN_XAUTH_POOL, similar to vpnsetup.sh. This is for advanced users only.
2024-06-30 01:25:53 +02:00 · 2022-02-25 21:17:09 -06:00 · 2022-02-25 21:17:09 -06:00 · 32a55ec06a
commit 32a55ec06a
parent 79a344ec46
1 changed files with 2 additions and 1 deletions
--- a/extras/ikev2setup.sh
+++ b/extras/ikev2setup.sh
@ -1032,6 +1032,7 @@ ANSWERS

 add_ikev2_connection() {
  bigecho2 "Adding a new IKEv2 connection..."
+  XAUTH_POOL=${VPN_XAUTH_POOL:-'192.168.43.10-192.168.43.250'}
  if ! grep -qs '^include /etc/ipsec\.d/\*\.conf$' "$IPSEC_CONF"; then
    echo >> "$IPSEC_CONF"
    echo 'include /etc/ipsec.d/*.conf' >> "$IPSEC_CONF"
@ -1046,7 +1047,7 @@ conn ikev2-cp
  leftrsasigkey=%cert
  right=%any
  rightid=%fromcert
-  rightaddresspool=192.168.43.10-192.168.43.250
+  rightaddresspool=$XAUTH_POOL
  rightca=%same
  rightrsasigkey=%cert
  narrowing=yes