Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ipsec]

IPsec (Internet Protocol Security) is a protocol for securing IP communications by authenticating and encrypting each IP packet of a communication session.

IPsec (Internet Protocol Security) is a protocol for securing IP communications by authenticating and encrypting each IP packet of a communication session.

1031 questions
0
votes
0 answers

Routing traffic through an IPSec tunnel but it keeps leaking through eth0

I have no networking experience but was tasked with setting up an IPSec tunnel at work with PPPoE. I've been working really hard at this, I didn't even know what IPSec and PPPoE were before starting this. But I'm stuck on a problem and need help,…
Sierra R
  • 1
0
votes
0 answers

Why StrongSwan allows to have same IP on both sides of tunnel?

By mistake, I configured StrongSwan in such manner: left=10.10.10.10 right=10.10.10.10 I saved file, reloaded IPSec confit and restarted StrongSwan daemon. Normally, with such configuration, I would expect some sort of errors in systemctl but…
MrSnowMan
  • 119
  • 2
0
votes
1 answer

How to configure proposals for IPSEC rekeying

I have a VPN connection via IPSEC (strongswan) running successfully. However, at least once a day the connection breaks. I think it has to do with rekeying, see the logs: Aug 25 02:34:25 myserver charon: 09[KNL] creating rekey job for CHILD_SA…
Tim
  • 115
  • 1
  • 5
0
votes
0 answers

StrongSwan config issue: no matching peer config found

I am trying to establish a VPN between my router (running OpenWrt) and my smartphone using IPsec. I followed the guide at https://openwrt.org/docs/guide-user/services/vpn/ipsec/strongswan/roadwarrior As far as I can tell most things are working…
ahorn42
  • 1
  • 1
0
votes
1 answer

UDP-Packets seem to get lost in IPsec tunnel from Strongswan to AWS cloud - connection works with Openswan

Use case: IOT-device connected through AWS cloud The IOT-device is behind a router that sends all traffic through aws cloud. The IOT-server can not be configured and thus is not part of the AWS cloud For configuration, the IOT-device needs to be…
DoRe
  • 41
  • 5
0
votes
0 answers

ipsec statusall displays connecting also after tunnel created

I successfully created a site to site VPN connection (named SAVE) with StrongSwan and it appears working fine. What bothers me is that the output of ipsec statusall in the Security Association section keeps displaying a CONNECTING entry and I don'…
Ascanio Orlandini
  • 33
  • 4
0
votes
1 answer

L2TP over IPSec strongswan/xl2tpd works on clone but not on original

I'm setting up VPN connection from firm network to clients. Currently: L2TP VPN. My first step was cloning current router-VM (it's a Hyper-V machine). I then proceeded to configure and experiment with the clone. Once I got the result I wanted, I…
Tymur Gubayev
  • 131
  • 5
0
votes
1 answer

Stongswan and Libreswan in Centos

I have a server running stongswan with one VPN connection. Can I add another VPN connection Via Libreswan on the same server? So the server will run both Strongswan and Libreswan. Regards, Michael
Mike
  • 1
0
votes
1 answer

What can cause an iOS device to be able to connect to IKEv2/IPsec VPN over LTE but not browse most websites?

Everything works fine over Wi-Fi. I tried disabling IPv6 using a provisioning profile. I tried on two different devices (iPhone 6 and current iPhone SE) using the same VPN provisioning profile (each device on its own LTE carrier).
sunknudsen
  • 701
  • 3
  • 14
  • 28
0
votes
1 answer

What VPN configuration do I need to connect an AWS VPC to a VPN using strongSWAN?

I need to connect the system I'm helping develop that's deployed on AWS to another system through a VPN. Looking at the remote system VPN configuration I saw that it is based on a linux machine running strongSWAN. The authentication is done through…
Juan Vega
  • 113
  • 2
0
votes
1 answer

Forward packages over openvpn and ipsec in strongswan container in docker in Kubernetes

I am running a deployment with an IPsec(strongswan) and an OpenVPN container. Configuration of IPsec: config setup conn customer keyexchange=ikev1 left=%defaultroute leftsubnet=192.168.224.0/24 right=X.X.X.X …
user580651
  • 1
  • 1
0
votes
0 answers

How to set up IPsec between two instances within the same VPC assuming that the traffic between them isn't secure?

I want to set up a secure transit of data between services running is different instances. First , I thought about setting up an EFS but I don't really like that an instance could have an access to another one. Then , I thought about VPN and again…
am fs
  • 45
  • 1
  • 5
0
votes
2 answers

StrongSwan: manually expire security association

I am working on automating some software tests involving IPSec and StrongSwan. These tests basically apply a swanctl.conf file to two gateway machines, then establish a tunnel between them. It then checks that the tunnel is encrypted and reports…
Will Nilges
  • 67
  • 1
  • 9
0
votes
0 answers

freeradius and configure eap or pap with rest

free radius and configure eap or pap with rest i want use strongswan with free radius and rest module, i see sql and eap work together, how can configure eap with rest ? the important part is strongswan not send password to radius server. server os…
user3652881
  • 1
  • 1
0
votes
1 answer

Failure to connect to a L2TP VPN over IPSec on Ubuntu 16.04

I am having issues connecting to my company's L2TP VPN over IPSEC. This is a Pelink Balance 305 router which has been configured correctly. I have checked that other colleagues have been able to connect using the same settings. I am running ubuntu…
robarthur1
  • 121
  • 2
  • 3
1 2 3
68 69