diff --git a/strongswan.cf b/strongswan.cf
new file mode 100644
index 0000000..1a5ef73
--- /dev/null
+++ b/strongswan.cf
@@ -0,0 +1,53 @@
+#
+#
+#
+
+bundle agent strongswan
+{
+vars:
+	"ipsec_conf" string => "/etc/ipsec.conf";
+	"ipsec_secrets" string => "/etc/ipsec.secrets";
+	"service_name" string => "ipsec";
+	"pkgs" slist => {
+		"strongswan"
+	};
+
+}
+
+
+bundle agent install_strongswan(cfg)
+{
+vars:
+	"js" string => storejson(@(cfg));
+
+methods:
+	"any" usebundle => wmde_install_packages(@(strongswan.pkgs),"strongswan");
+	"any" usebundle => wmde_service("$(strongswan.service_name)","strongswan_kept","strongswan_repaired"),
+		depends_on => {
+			"strongswan_ipsec_conf_ready",
+			"strongswan_ipsec_secrets_ready"
+		};
+files:
+	"$(strongswan.ipsec_conf)"
+	create => "true",
+	template_method => "mustache",
+	template_data => bundlestate("$(this.bundle)"),
+	depends_on => {"strongswan_pkgs_installed"},
+	handle => "strongswan_ipsec_conf_ready",
+	classes => if_repaired("strongswan_repaired"),
+	edit_template => "$(sys.workdir)/inputs/$(def.wmde_libdir)/templates/strongswan-ipsec.conf.mustache";
+
+	"$(strongswan.ipsec_secrets)"
+	create => "true",
+	template_method => "mustache",
+	template_data => bundlestate("$(this.bundle)"),
+	depends_on => {"strongswan_pkgs_installed"},
+	handle => "strongswan_ipsec_secrets_ready",
+	classes => if_repaired("strongswan_repaired"),
+	edit_template => "$(sys.workdir)/inputs/$(def.wmde_libdir)/templates/strongswan-ipsec.secrets.mustache";
+
+
+
+	
+reports:
+}