constellation/dev-docs/howto/vpn/helm/templates/strongswan-secret.tpl

{{- define "strongswan.swanctl-conf" }}
connections {
    net-net {
      remote_addrs = {{ .Values.ipsec.peer }}
      local {
          auth = psk
      }
      remote {
          auth = psk
      }
      children {
          net-net {
              local_ts  = {{ .Values.podCIDR }},{{ .Values.serviceCIDR }}
              remote_ts = {{ join "," .Values.peerCIDRs }}
              start_action = trap
          }
      }
    }
}

secrets {
    ike {
        secret = {{ quote .Values.ipsec.psk }}
    }
}
{{- end }}
docs: add Helm chart for VPN connectivity (#2577) Co-authored-by: 3u13r <lc@edgeless.systems> 2023-11-22 09:08:11 -05:00			`{{- define "strongswan.swanctl-conf" }}`
			`connections {`
			`net-net {`
			`remote_addrs = {{ .Values.ipsec.peer }}`
			`local {`
			`auth = psk`
			`}`
			`remote {`
			`auth = psk`
			`}`
			`children {`
			`net-net {`
			`local_ts = {{ .Values.podCIDR }},{{ .Values.serviceCIDR }}`
			`remote_ts = {{ join "," .Values.peerCIDRs }}`
			`start_action = trap`
			`}`
			`}`
			`}`
			`}`

			`secrets {`
			`ike {`
			`secret = {{ quote .Values.ipsec.psk }}`
			`}`
			`}`
			`{{- end }}`