Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ikev2]

93 questions
0
votes
0 answers

Centos IPSec IKEv2 Client without forward internet

I Have a CentOS 7 Server with WHM/cPanel installed on it. I want to connect on IPSec IKEv2 Tunnel with a preshared key but without forwarding the internet thru the VPN Connection. The Tunnel is important to connect a website to an LDAP Server. How…
Manolis Tsiamitas
  • 1
0
votes
0 answers

Windows native client not connecting to IKEv2 EAP VPN

We are investigating the possibility of replacing pfSense/opnSense with Mikrotik for our office routers. Our current routers provide site-to-site tunnels between locations, as well as RADIUS-backed VPN connectivity to employees using native clients.…
miken32
  • 942
  • 1
  • 13
  • 35
0
votes
0 answers

How to set up StrongSwan (behind NAT) IKEv2/IPSec with PSK (pre-shared key)?

I set up my strongswan server on a virtual Ubuntu 22 behind a NAT. It works well for RCA using login password. But I need to work using only PSK key. I tried a bunch of options, I can not connect from my android. At the moment the configs are: cat…
Дмитрий В.
  • 1
  • 1
0
votes
0 answers

Windows 11 IKEv2 fails to connect, error code 1931 eventID 20227

I have Mikrotik configured for accepting IPSec connections with server certificate and RADIUS auth, SHA1 and so on enabled on Mikrotik side for Windows compatibility. It also configured for L2TP/IPSec, which I used previously for remote work and…
SelfishCrawler
  • 127
  • 1
  • 5
0
votes
0 answers

Strongswan IKEv2 VPN tunnel not establishing

I have searched for so many different solutions and I have not found anything, I am hoping that I can find the solution here. We are configuring a new VPN, our old VPN is set up as an IKEv1 VPN, it works fine, the new one doesn't, it can establish a…
ReeceAB
  • 1
0
votes
0 answers

VPN IKEv2 connection problems on Android, IKE_SA failed

I have a big problem with connecting to my VPN server from 50% of Android devices. Cannot resolve it 2 weeks with network and android developers VPN server based on IKEv2 with Charon and Strongswan libs, and it works stable with iPhone devices But…
Maksim Zakharenka
  • 11
  • 1
0
votes
0 answers

Site to site IKEv2 VPN between two Windows Server 2012 R2 machines only working in one direction

We are trying to set up a Site-to-Site VPN with IKE v2 using Windows Server 2012 R2 machines as the tunnel endpoints on each end. We are able to PING and get replies in one direction, but we are not able to PING and get replies in the other…
Gene Joy
  • 1
0
votes
0 answers

ike-scan 0 returned handshake 0 returned notify

I need to establish vpn connection to a specific site, I used strongswan and configure my side according to the provided parameters from another side, but when I try to connect I get 'peer not responding'. I used ike-scan on the ip they gave to me…
Mohammed Hafiz
  • 11
  • 2
0
votes
0 answers

Setting up site to site VPN with IKEv2 on Windows Server 2012 R2

We are trying to set up a site to site VPN on Windows Server 2012 R2 with IKE v2. It was originally set up for IKE v1 but our partner no longer supports IKE v1. The parameters are as follows: Phase 1 Encryption AES-256 Hash SHA, SHA256, SHA384,…
Gene Joy
  • 1
0
votes
1 answer

Failed to start the IKEv2 VPN connection to surfshark via NetworkManager

I try to connect to surfshark VPN provider through IKEv2 manually. Here are the logs charon-nm[5070]: 05[CFG] received initiate for NetworkManager connection Surfshark IKE2 charon-nm[5070]: 05[CFG] using gateway identity…
Morse
  • 103
  • 2
0
votes
1 answer

EAP-MS-CHAPv2 verification failed Arch Linux (strongswan)

I cannot get Strongswan, networkmanager-strongswan (client) work on your Arch-PC. My vpn-strongswan server (hereinafter deb (server)) has been configured for a long time, any devices (such as android, windows), except for my arch linux (hereinafter…
Alex Petrov
  • 1
0
votes
1 answer

pfSense as IPSec remote access client

I have a pfSense router in a residential environment and need to use IPSec/IKEv2 as a remote access client to a commercial VPN provider. I know the pfSense web UI doesn't support the router being the remote access client, but the underlying FreeBSD…
joe_shmo
  • 1
  • 1
0
votes
0 answers

Vpn . Nps . Active directory . Strongswan ikev2

please help me I configured a strongswan IKEV2 On Centos7 vps and NPS and Active Directory for my authentication and accounting(radius) on windows server 2016 vps when i want to connect to my ikev2 vpn on windows 10 i get this error: the remote…
Artursa
  • 1
0
votes
0 answers

Cannot connect MacOS to StrongSwan VPN server installed on ubuntu

I have an issue connecting to IKEv2 VPN running on an Ubuntu VM on GCP. I am trying to connect with MacOS and Windows. I followed this tutorial to install the VPN on an Ubuntu VM. I need a VPN so that I can have a static IP for multiple people and…
nealous3
  • 131
  • 1
  • 1
  • 5
0
votes
1 answer

StrongSwan clients fail to connect, Constraint checking failure

Client devices (Runs Windows 10 and Android with StrongSwan app) fail to connect. Certificates signed by one authority, CN is set as server public ip. Here's ipsec.conf: config setup include /var/lib/strongswan/ipsec.conf.inc config setup …
user11686813
  • 1
  • 1
  • 2
1 2 3 4
5
6 7