# Automatically generated config file - DO NOT MODIFY. Changes will be overwritten.
starter {
	load_warning = no
	config_file = /var/etc/ipsec/ipsec.conf
}

charon {
# number of worker threads in charon
	threads = 16
	ikesa_table_size = 32
	ikesa_table_segments = 4
	init_limit_half_open = 1000
	install_routes = no
	load_modular = yes
	ignore_acquire_ts = yes
	
	
	cisco_unity = yes
	
	

	syslog {
		identifier = charon
		# log everything under daemon since it ends up in the same place regardless with our syslog.conf
		daemon {
			ike_name = yes
			dmn = 1
			mgr = 1
			ike = 1
			chd = 1
			job = 1
			cfg = 1
			knl = 1
			net = 1
			asn = 1
			enc = 1
			imc = 1
			imv = 1
			pts = 1
			tls = 1
			esp = 1
			lib = 1

		}
		# disable logging under auth so logs aren't duplicated
		auth {
			default = -1
		}
	}

	plugins {
		# Load defaults
		include /var/etc/ipsec/strongswan.d/charon/*.conf

		stroke {
			secrets_file = /var/etc/ipsec/ipsec.secrets
		}

		unity {
			load = yes
		}
		eap-radius {
			class_group = yes
			eap_start = no
			
			servers {
				equisoft.com_(VPN name) {
					address = server1.domain.com
					secret = "longsecret"
					auth_port = 1812
					acct_port = 
				}

			}
		}
		attr {
			dns = IP1
			subnet = Subnet1,Subnet2,Subnet3
			split-include = Subnet1,Subnet2,Subnet3
			# Search domain and default domain
			28674 = "domain.com"
			28675 = "domain.com"
		}
		xauth-generic {
			script = /etc/inc/ipsec.auth-user.php
			authcfg = domain.com (VPN name)
		}

	}
}