#
# さくらのクラウドとVPN(IPsec)接続するルーターの設定 : コマンド設定
#

#
# ルーターの設定(2)
#

#
# ゲートウェイの設定
#
ip route 192.168.1.0/24 gateway tunnel 1

#
# VPN(IPsec)の設定
#
tunnel select 1
ipsec tunnel 101
ipsec sa policy 101 1 esp aes-cbc sha-hmac
ipsec ike always-on 1 on
ipsec ike duration ipsec-sa 1 1800
ipsec ike duration ike-sa 1 28800
ipsec ike encryption 1 aes-cbc
ipsec ike group 1 modp1024
ipsec ike hash 1 sha
ipsec ike keepalive log 1 off
ipsec ike keepalive use 1 on dpd 15 2
ipsec ike local address 1 192.168.100.1
ipsec ike local id 1 192.168.100.0/24
ipsec ike pfs 1 on
ipsec ike pre-shared-key 1 text (事前共有鍵)
ipsec ike remote address 1 (さくらのクラウドのグローバルIPアドレス)
ipsec ike remote id 1 192.168.1.0/24
ip tunnel mtu 1280
ip tunnel tcp mss limit auto
tunnel enable 1

#
# VPN(IPsec)の設定 (共通項目)
#
ipsec auto refresh on