687
edits
Changes
no edit summary
Use the hostname of the server for both "server address" and "remote ID". "Local ID" can be blank. Use authentication setting "none", and fill the "shared secret".
== References ==
* [https://man.openbsd.org/iked.conf.5 iked.conf(5)]
* [https://man.openbsd.org/unbound.conf unbound.conf(5)]
* [https://man.openbsd.org/pf.conf pf.conf(5)]
* [https://tools.ietf.org/html/rfc5996 RFC5996 | Internet Key Exchange Protocol Version 2 (IKEv2)]
* [https://tools.ietf.org/html/rfc2401 RFC2401 | Security Architecture for the Internet Protocol]