I was wondering if someone could point me in the right direction for modifying the default IPSec configuration used by the L2TP VPN service.
The configuration file appears to be generated when the service is started in /var/sec/chroot-ipsec/etc/ipsec.conf (S_REF_IpsL2t1_0), but as soon as the service is stopped IPSec profiles used by L2TP are removed.
Is there some way I can edit config so that, for instance, tunnel mode is used instead of transport mode or a different encryption algorithm is used?
Note: We need to be able to customise these defaults for our implementation, as the default options do not meet our organisation's security requirements for IPSec.
Thanks.
The configuration file appears to be generated when the service is started in /var/sec/chroot-ipsec/etc/ipsec.conf (S_REF_IpsL2t1_0), but as soon as the service is stopped IPSec profiles used by L2TP are removed.
Is there some way I can edit config so that, for instance, tunnel mode is used instead of transport mode or a different encryption algorithm is used?
Note: We need to be able to customise these defaults for our implementation, as the default options do not meet our organisation's security requirements for IPSec.
Thanks.