Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ipsec]

IPsec (Internet Protocol Security) is a protocol for securing IP communications by authenticating and encrypting each IP packet of a communication session.

IPsec (Internet Protocol Security) is a protocol for securing IP communications by authenticating and encrypting each IP packet of a communication session.

1031 questions
0
votes
1 answer

No internet IP routing on Windows 10 client connected to LT2P/IPsec VPN on Windows 2019 server

I have set up a VPN from a Windows 10 client to a Windows 2019 server. After connecting using rasdial I sucessfully issue a net use : \\\. However, with the default setting, the…
jamacoe
  • 193
  • 2
  • 7
0
votes
0 answers

IPSec iptables rules for local service

I have a StrongSwan IPSec remote access server running on RHEL and a client all on the same local network. I have a Samba server running on the same RHEL host that I want to be available through the VPN but not outside the tunnel. I can get the…
joe_shmo
  • 1
  • 1
0
votes
2 answers

Strongswan IPSec Configuration on a VPS

Please assist. I'm trying to set up a site to Site IPSec tunnel with strongswan on my VPS but sadly my provider cannot enable the following kernel modules for…
user8385240
  • 3
  • 1
0
votes
1 answer

OpenBSD, mtu=0 on enc0 device, ping packets don't pass

On OpenBSD 6.9 I tried to install an IPSec (IPv4, IKEv2, ESP, tunnel) network-to-network gateway to communicate with a Palo Alto gateway (which I do not control). ikectl show sa leads me to believe that the SA has been set up. When I try to ping a…
Karsten Köpnick
  • 203
  • 2
  • 10
0
votes
0 answers

setting up gre tunnel on debian with tunnel source and tunnel destination

I am trying to setup a gre tunnel on debian to receive broadcast packets. I have the information for an interface ip address [10.16.2.4 255.255.255.192] tunnel source [10.16.0.2] tunnel destination [10.16.254.1] When I try to create the tunnel with…
chllres
  • 1
  • 1
0
votes
1 answer

pfSense as IPSec remote access client

I have a pfSense router in a residential environment and need to use IPSec/IKEv2 as a remote access client to a commercial VPN provider. I know the pfSense web UI doesn't support the router being the remote access client, but the underlying FreeBSD…
joe_shmo
  • 1
  • 1
0
votes
0 answers

IPSec site2site tunnel + vpn

In our research project, we needed to deploy a server "Molly" at another company. They made us set up a IPSec tunnel to their firewall/gateway and from there, the comms are forwarded to our server. I configured StrongSwan on our gateway machine…
Szymon
  • 1
0
votes
1 answer

Packets from xfrm interface won't route, but opposite works

I'm working on a site-to-site vpn, where one end us a UDM and the other is Strongswan. The goal is to provide bi-directional routing into a cloud environment. I'm completely baffled why this isn't working. The good news is Strongswan connects and…
Jonathan S. Fisher
  • 434
  • 4
  • 19
0
votes
0 answers

Strongswan tunnel connected but the traffic is not going through it

I have 3 Virtual Machine cluster (platform1, platform2 and platform3) and I have enabled ipsec tunnel communication between them using strongswan (5.6.2). The tunnel looks fine and connected, but seems there is a problem routing the traffic through…
Saurabh Kumar
  • 1
  • 2
0
votes
0 answers

IPsec port forwarding Teltonika RUT955

I am using two Teltonika RUT955 routers with IPsec (Strongswan) built in. For testing I have a cable running from WAN to WAN with static IPs in both routers at 172.16.1.1 and 172.16.1.2. I have the tunnel up and working with the internal RS232 com…
jhoop
  • 1
0
votes
1 answer

Mirror incoming traffic on specific port to another IP, using my IPSec strongswan tunnel

I want to internally publish an SMTP server (IP 10.0.0.10) that is behind a VPN tunnel on my internal server (192.168.0.12) using strongswan. My strongswan is running within a docker container. For this I want my internal server 192.168.0.12 to…
Theo
  • 153
  • 1
  • 11
0
votes
1 answer

IPsec/L2TP connection fails when two clients have the same local LAN address

We are having occasional trouble with an IPsec/L2TP remote access VPN, provided by strongSwan (charon). Today a user was unable to connect. I viewed the charon log, and noticed that another existing session was impacted. The common part was the…
rwfbc
  • 131
  • 4
0
votes
1 answer

ipsec xfrm esp routing

i need a little help/explanation why the following netsetup is not working: PC1 (192.168.66.1) <-- PLAIN --> (192.168.66.2)PC-GW(192.168.88.2) <-- ESP --> (192.168.88.1) PC2 I can send packets from PC1 192.168.66.1 to PC2 192.168.88.1 and the PC-GW…
kita
  • 3
  • 1
0
votes
0 answers

Masking network behind another using Iptables MARK and NETMAP targets

Aoa, Hello I have faced similar scinario mentioned in following link during vpn tunnel implementation using Strongswan: https://www.strongswan.org/testing/testresults/ikev2/net2net-same-nets/ Here it is mention that: necessary network mappings are…
MUHAMMAD KASHIF
  • 1
  • 1
0
votes
1 answer

Routing part of OpenVPN traffic into an IPSec tunnel on the server

I am trying to configure OpenVPN Access Server to route certain traffic through an IPSec tunnel established on the OpenVPN server. These are the addressing details: OpenVPN client IP range: 10.0.1.0/24 OpenVPN server IP (where clients connect to):…
Martin Melka
  • 179
  • 2
  • 13
1 2 3
68 69