Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ipsec]

IPsec (Internet Protocol Security) is a protocol for securing IP communications by authenticating and encrypting each IP packet of a communication session.

IPsec (Internet Protocol Security) is a protocol for securing IP communications by authenticating and encrypting each IP packet of a communication session.

1031 questions
0
votes
0 answers

VPN Connection (Fritzbox) works for Android Client but not for Windows and Ubuntu

I use a Fritzbox 7530 Router in my home network as a VPN server. The VPN is configured as "IPSec Xauth PSK" with following settings: server name, IPSecID, IPSec shared key, user name and password. The connection works just fine using an Android…
Anton
  • 101
  • 2
0
votes
1 answer

XFRM IPsec over Geneve

I need to run IPsec over a Geneve tunnel (or GRETAP). I can get the IPsec tunnel to work using public IPs as endpoints (so it's just IPsec) but not using private IPs on the Geneve link (so it's IPsec/Geneve.) The Geneve tunnel is up and…
Jeff Learman
  • 207
  • 1
  • 2
  • 9
0
votes
1 answer

Google Cloud Serverless VPC Access Not Working in Both Directions

I have a Cloud Run service which I would like to connect to my default VPC network through a Serverless VPC connector. The final goal with this is to allow my Cloud Run instances to access an on-prem server through a separately configured VPN, but…
Conor Strejcek
  • 101
  • 2
0
votes
1 answer

What do the parameters of Set-VPNConnectionIPSecConfiguration Mean

The only way to manually configure what encryption proposals windows provides for an IPSec VPN connection seems to be through the PowerShell command Set-VPNConnectionIPSecConfiguration. However, the documentation by Microsoft is vague and confusing.…
Natecat
  • 103
  • 4
0
votes
0 answers

Using VPN with Docker

I use Laradock for my project, which attacks an external MySql server. Recently, this server had been protected by Fortinet IPsec VPN. I work with Ubuntu 20.04, so I installed strongSwan as explained in this article. After doing sudo ipsec up…
guyaloni
  • 51
  • 3
0
votes
0 answers

IPsec: How can I access connected IPsec VPN client from VPN server?

My server: eth0: public ip 35.35.35.35 eth1: 10.50.0.1 subnet 10.50.0.0/22 ipsec.conf config setup charondebug="2" uniqueids=no conn ikev2-vpn auto=add compress=no type=tunnel keyexchange=ikev2 fragmentation=yes …
Jie Ma
  • 1
  • 1
0
votes
0 answers

Why we get TCP retransmissions through IPSec Site-by-Site Tunnel

We use two pfsense firewalls at two locations and have connected the locations using IPsec site-by-site. That had worked well for a long time, now we had installed the 2.6.0 update at both locations and suddenly the speed dropped massively. I've…
kockiren
  • 886
  • 3
  • 14
  • 37
0
votes
0 answers

Issues configuring strongSwan client on AWS instance for site-to-site VPN

I am trying to setup a IPSec VPN client on a debian-10 AWS instance. Unfortunately, I do not have access to the VPN server as it is configured by another party, so all I know is they told me it is configured for my my-aws-public-ip. I am trying to…
deann
  • 101
  • 1
0
votes
0 answers

I can't get my WIreguard tunnel to complete a handshake

I'm trying to setup a point-to-site wireguard tunnel between two different points on two seperate networks, but have setup similar tunnels setup in similar situations so I don't believe it has anything to do with the infrastructure between my…
Kyle Champoux
  • 11
  • 1
  • 3
0
votes
0 answers

Failure connecting Mikrotik to Strongswan using IPSec

hope you are doing well. I am trying to connect a Mikrotik RB2011RM to Strongswan running on a cloud server. I cannot get past Phase 1. I have searched through google and found some great examples and still cannot figure out what is the problem. …
Mike Myers
  • 1
  • 1
0
votes
1 answer

IPSec Netgear BS200 and Linksys LRT214 - Can't reach devices

I have set up the first time an IPSec site to site tunnel. The tunnel is up and running from a Netgear BR200 and the Linksys LRT214 Router. Network 1 has 192.168.100.x and the Network 2 has 192.168.1.x! Linksys displays "connected" and in the…
chrisonline
  • 101
  • 3
0
votes
2 answers

How to link ipsec clients with different connections in StrongSwan?

I use strongswan ipsec as VPN gateway for mobile devices (Android). In StrongSwan config I've setup 2 connections (two different subnets 10.10.10.0/24, 10.10.20.0/24 with different routing policies) for 2 different groups of users. And I don't…
alex
  • 101
  • 2
0
votes
2 answers

How is IPsec (strongswan) working without opening ports in UFW?

I needed to setup a site-to-site VPN between servers A and B, where server A is being managed by me and server B is being managed by a client. Server A is running Ubuntu 20.04 and I am using strongswan to setup the VPN on my end. I am using UFW to…
Ashish
  • 165
  • 1
  • 7
0
votes
0 answers

Strongswan clear traffic issue

I have 2 raw Debian 11 VMs connected with an internal network on VirtualBox (see the diagram below). Both VMs have 2 network interfaces (the tunnel-side interface and the private network one). I installed Strongswan on both and set up a very basic…
elfamosomojito
  • 1
0
votes
0 answers

Unable to authenticate with IPsec tunnel on FortiGate via Windows native client

I have setup an IPsec tunnel on our FortiGate 51E (FortiOS v6.2.10 build1263 (GA)) and I am able to connect via my Windows native client, however when I am asked for a username and password, I am getting the error "The remote connection was denied…
qroberts
  • 285
  • 1
  • 4
  • 23
1 2 3
68 69