nixos: add the strongswan-swanctl service

The strongswan-swanctl systemd service starts charon-systemd. This implements a IKE daemon very similar to charon, but it's specifically designed for use with systemd. It uses the systemd libraries for a native integration. Instead of using starter and an ipsec.conf based configuration, the daemon is directly managed by systemd and configured with the swanctl configuration backend. See: https://wiki.strongswan.org/projects/strongswan/wiki/Charon-systemd Note that the strongswan.conf and swantctl.conf configuration files are automatically generated based on NixOS options under services.strongswan-swanctl.strongswan and services.strongswan-swanctl.swanctl respectively.
2025-06-11 04:05:40 +03:00 · 2017-08-05 14:01:52 +02:00 · 2017-08-05 14:01:52 +02:00 · bd24b3addd
commit bd24b3addd
parent 04dd1987a3
12 changed files with 3811 additions and 0 deletions
--- a/nixos/modules/module-list.nix
+++ b/nixos/modules/module-list.nix
@ -560,6 +560,7 @@
  ./services/networking/ssh/lshd.nix
  ./services/networking/ssh/sshd.nix
  ./services/networking/strongswan.nix
+  ./services/networking/strongswan-swanctl/module.nix
  ./services/networking/stunnel.nix
  ./services/networking/supplicant.nix
  ./services/networking/supybot.nix