Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ikev2]

93 questions
0
votes
0 answers

Is it possible to have 2 left ids in strongswan?

I need my strongswan server to operate on 2 domain names . ipsec.conf currently contains : leftid=@sub.domain.com How can I add another domain ? Is this syntax gonna work? leftid=@sub.domain.com,@sub2.domain.com Below is the current config…
master lfc6
  • 27
  • 2
  • 7
0
votes
1 answer

IKEv2 VPN on server 2019 suddenly stops working

We have a number of customers using Server 2019 as a VPN server with the IKEv2 protocol through the Routing and Remote Access (RRAS) service. Suddenly, every single one of them gets the following error on their clients "IKE credentials are…
Mikael Dyreborg Hansen
  • 559
  • 1
  • 5
  • 16
0
votes
1 answer

Does ikev1 or ikev2 support a no-authentication option? If so, how can I enable that in strongswan?

For testing purposes, I want to setup an ipsec tunnel using IKEv1 or v2 (preferably v2) that does not require any authentication - so just using the protocol to agree on the secret-keys of the ipsec tunnel and skipping the authentication. Is such an…
xeyipes
  • 15
  • 2
0
votes
1 answer

IKev2 strongswan got deleting half open IKE_SA with x.x.x.x after timeout with iOS device

I installed an IKEv2 strongswan vpn server on ubuntu 18.04 and also I use a valid Let's encrypte CA for that. I want to use it on an application for iOS. So here is the IPSec.conf : config setup charondebug="all" # keep_alive=24h …
mohsen
  • 113
  • 1
  • 6
0
votes
1 answer

How to set remoteId and server certificate check Strongswan IKEv2 ubuntu 18.04

I am a new member in IKEv2, and I want to install an IKEv2 vpn on an ubuntu 18.04 server, I did it through this tutorial , but I have a couple of questions. First how can I configure its remote id, because I use a url for that in my ios app. The…
mohsen
  • 113
  • 1
  • 6
0
votes
0 answers

StrongSwan config issue: no matching peer config found

I am trying to establish a VPN between my router (running OpenWrt) and my smartphone using IPsec. I followed the guide at https://openwrt.org/docs/guide-user/services/vpn/ipsec/strongswan/roadwarrior As far as I can tell most things are working…
ahorn42
  • 1
  • 1
0
votes
1 answer

What can cause an iOS device to be able to connect to IKEv2/IPsec VPN over LTE but not browse most websites?

Everything works fine over Wi-Fi. I tried disabling IPv6 using a provisioning profile. I tried on two different devices (iPhone 6 and current iPhone SE) using the same VPN provisioning profile (each device on its own LTE carrier).
sunknudsen
  • 701
  • 3
  • 14
  • 28
0
votes
2 answers

Windows 10 IKEv2 IPSec VPN client & DH Group15 (modp3072) or higher

Is there any way to configure the Windows 10 VPN client to use DH Group 15 / Group15 (modp3072) or higher for key exchange? I am somewhat distressed that the CNSA specifies use of DH Group 15 (modp3072) or higher, but the Windows 10 VPN client…
Will Snyder
  • 1
  • 1
  • 2
0
votes
0 answers

freeradius and configure eap or pap with rest

free radius and configure eap or pap with rest i want use strongswan with free radius and rest module, i see sql and eap work together, how can configure eap with rest ? the important part is strongswan not send password to radius server. server os…
user3652881
  • 1
  • 1
0
votes
0 answers

RRAS IKEv2 VPN no response

We have an IPSEC/L2TP PSK VPN on Windows Server 2012 using RRAS. This usually works fine, but now with so many staff working from home due to COVID-19, I am getting complaints of the VPN dropping out on a few mobile devices. So now I am trying to…
Asagohan
  • 127
  • 1
  • 1
  • 7
0
votes
0 answers

IKEv2 Need a small help on Strongswan

I'm trying to create an IKEv2 Strongswan VPN server (U5.7.2/K5.3.0-42-generic) since two days on my personnal VPS (Ubuntu 19.10) to make some tests before implement it on the Unifi equipment of my work (I hope that will be possible) I've used…
mathpro
  • 1
  • 2
0
votes
1 answer

IKev2 VPN Event ID 20209 - Server Authentication

I have made only one certificate for VPN access with ikev2. Within 2 days i got event id 20209, even though I didn't tried to connect. The certificate is still with me and no one else has access to it. But event viewer states that A connection…
Bhavya Gupta
  • 111
  • 3
0
votes
0 answers

Strongswan Centos 7 Config Issue

I have a problem with configuring Strongswan on Centos 7 ! First please notice that I want to connect with only username and password and I don't want to import any profiles on my phone ! My server ip is 88.99.45.140 or hostname ik.xpdns.xyz and I…
master lfc6
  • 27
  • 2
  • 7
0
votes
0 answers

Rekeying denies protocols/NAT issue or config?

I'm using strongswan to connect to a MAC server using IKEv2/IPsec configuration. The server uses the proposed algorithms to establish the SA and everything works great. Upon rekeying however, the server denies the proposed algorithms and reverts to…
ToxicTech
  • 1
  • 4
0
votes
1 answer

strongswan ikev2 connect to the same server

I have a strongswan ikev2 vpn installed on my server. With my win10 laptop I can connect to the vpn and and connect to everything via vpn. But how can I connect to my server? I have a service on a blocked port on my server so I am using this vpn.…
BestimmungGefördert
  • 121
  • 1
  • 1
  • 5
1 2 3 4 5
6
7