strongswan/testing/tests/p2pnat/medsrv-psk/hosts/bob/etc/ipsec.conf

# /etc/ipsec.conf - strongSwan IPsec configuration file

config setup
        crlcheckinterval=180
	strictcrlpolicy=no
	plutostart=no

conn %default
	ikelifetime=60m
	keylife=20m
	rekeymargin=3m
	keyingtries=1
	keyexchange=ikev2
	mobike=no
	dpdaction=restart
	dpddelay=60s
	left=%defaultroute
	leftfirewall=yes

conn medsrv
	leftid=av9oEPMz@medsrv.org
	right=PH_IP_CAROL
	rightid=carol@strongswan.org
	authby=psk
	p2p_mediation=yes
	auto=start

conn p2p 
	leftcert=bobCert.pem
	leftid=bob@strongswan.org
	right=%any
	rightid=alice@strongswan.org
	rightsubnet=PH_IP_ALICE/32
	p2p_mediated_by=medsrv
	p2p_peerid=6cu1UTVw@medsrv.org
	auto=add