Highest Voted 'ipsec' Questions - Server Fault Stack Exchange

82

votes

7 answers

OpenVPN vs. IPsec - Pros and cons, what to use?

Interestingly I have not found any good search results when searching for "OpenVPN vs IPsec". So here's my question: I need to set up a private LAN over an untrusted network. And as far as I know, both approaches seem to be valid. But I do not know…

asked Nov 17 '10 at 13:41

jens

1,001
1
10
10

47

votes

16 answers

64-bit Cisco VPN client (IPsec)?

Cisco VPN client (IPsec) does not support 64bit Windows. Worse, Cisco does not even plan to release a 64-bit version, instead they say that "For x64 (64-bit) Windows support, you must utilize Cisco's next-generation Cisco AnyConnect VPN…

windows vpn cisco ipsec 64-bit

asked May 06 '09 at 10:18

mika

1,466
2
12
18

41

votes

2 answers

strongswan vs openswan

What are the differences between OpenSwan and StrongSwan? All I found is this comparison between the outdated FreeSwan and testing version of OpenSwan - i.e. current stable of OpenSwan is 2.6 (3.0 in comparison) and current stable for StrongSwan is…

linux ipsec

asked Aug 22 '10 at 00:05

Maciej Piechotka

677
1
7
15

32

votes

4 answers

Is data always encrypted in IPv6 communications?

I can't seem to get a straight answer to this quesion. Wikipedia says "IPsec is an integral part of the base protocol suite in IPv6," but does that mean that ALL communications are always encrypted, or does it mean that encryption is optional, but…

encryption ipv6 ipsec

asked Apr 18 '11 at 16:29

alan

323
1
3
5

31

votes

3 answers

Which ports for IPSEC/LT2P?

I have a firewall/router (not doing NAT). I've googled and seen conflicting answers. It seems UDP 500 is the common one. But the others are confusing. 1701, 4500. And some say I need to also allow gre 50, or 47, or 50 & 51. Ok, which ports are…

linux iptables firewall ipsec l2tp

asked Nov 22 '12 at 22:56

hookenz

14,472
23
88
143

27

votes

1 answer

IPsec for Linux - strongSwan vs Openswan vs Libreswan vs other(?)

Searching for IPSec and Linux one inevitably will be confronted with different solutions (see below) which all seem quite similar. The question is: where is the difference? I found these projects. All of them are open source, all are active (have a…

vpn ipsec openswan strongswan

asked Aug 23 '16 at 16:27

masgo

433
1
4
12

21

votes

1 answer

How to set up strongswan or openswan for pure IPSEC with iPhone client?

I'm having trouble finding concrete, up-to-date information for how to set up strongswan or openswan to be used by the iphone's VPN client. My server is behind a budget linksys NAT router. I found this, but it mentions a whole bunch of .pem files…

vpn ipsec

asked Dec 14 '10 at 11:37

Shabbyrobe

567
1
7
19

21

votes

2 answers

Connect to a Fortinet VPN with Ubuntu

I don't know a lot about VPNs but I'd like to connect to a Fortinet VPN with Ubuntu. I can connect on Windows using Forticlient just by entering the policy server (vpn.theserver.com) and then it asks for a user/password. I use IPSec.

vpn ipsec fortinet

asked Jun 17 '10 at 19:25

Dan

343
1
3
6

20

votes

2 answers

Is it possible for L2TP VPN to do auto route configuration for client during connected?

We've setup a L2TP VPN server with this tutorial, everything works like a charm. The only issue is We don't want client to route all traffic using this VPN, only a particular subnet, e.g. 10.0.0.0/20 On Mac, we need to set the route manually using…

linux vpn linux-networking ipsec l2tp

asked Feb 08 '14 at 06:00

Howard

2,135
13
48
72

19

votes

1 answer

With iptables, match packets arrived via IPSEC tunnel

I'm using IPSEC in a tunnel mode. How to make an iptables rule that will match only packets which arrived via IPSEC tunnel (i.e. after IPSEC decrypted them - not the IPSEC packets when they arrive and before decryption). The point is to have a…

linux iptables ipsec

asked Jan 06 '13 at 14:31

Sandman4

4,077
2
21
27

14

votes

2 answers

When would you use MPLS?

After having just spent months setting up a fairly complex VPN, I'm beginning to look at alternatives for the future. Some of my network providers use MPLS to connect to us, and I suppose it works fairly well. I know many ATM (automated teller…

vpn ipsec mpls

asked Aug 31 '09 at 16:50

Kyle

1,859
2
17
23

14

votes

3 answers

IPSec for LAN traffic: Basic considerations?

This is a follow-up to my Encrypting absolutely everything... question. Important: This is not about the more usual IPSec setup, where you want to encrypt traffic between two LANs. My basic goal is to encrypt all traffic within a small company's…

local-area-network encryption ipsec

asked Apr 08 '10 at 17:28

Chris Lercher

4,152
9
35
41

13

votes

3 answers

Why are only 3 ip xfrm policies needed for a IPsec tunnel?

I have a site-to-site IPsec tunnel up and running between a strongswan (v5.2.0) instance (site A) and a RouterOS router (site B). Everything works fine, the hosts in the two private subnets setup for site A (10.10.0.0/16) and B (10.50.0.0/16) can…

ip ipsec

asked Oct 10 '14 at 09:45

dorian

427
1
8
24

12

votes

2 answers

Strongswan VPN tunnel between two AWS instances won't connect

I am trying to set up a VPN tunnel using StrongSwan 5.1.2 between two Amazon AWS EC2 instances running Ubuntu 14.04.2 LTS. Prior to using StrongSwan, I used open(libre)swan on an Amazon RedHat AMI, which worked fine. For some reason I can't even…

vpn amazon-web-services ipsec ubuntu-14.04 strongswan

asked Jun 17 '15 at 18:04

lobi

1,083
2
15
30

12

votes

3 answers

ipsec verify on ubuntu Two or more interfaces found, checking IP forwarding [FAILED]

Ubuntu 14.04, Openswan U2.6.38/K3.13.0-30-generic When I run ipsec verify I get this error. Two or more interfaces found, checking IP forwarding [FAILED] I see quite a few of this same question floating around. Has anybody finally found…

ubuntu vpn ipsec

asked Aug 08 '14 at 21:10

user236822

121
1
1
3

Questions tagged [ipsec]