Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ipsec]

IPsec (Internet Protocol Security) is a protocol for securing IP communications by authenticating and encrypting each IP packet of a communication session.

IPsec (Internet Protocol Security) is a protocol for securing IP communications by authenticating and encrypting each IP packet of a communication session.

1031 questions
0
votes
0 answers

Can one use a MySQL backend for user authentication in a strongswan VPN server (new)?

We have installed and configured a strongswan VPN server with username / password authentication. Is it possible to store the users' credentials in a MySQL backend and configure strongswan to use the backend for this purpose? this is old question…
user3652881
  • 1
  • 1
0
votes
1 answer

strongSwan client can connect to the internet (through the VPN) but cannot SSH to VPN server or other clients on the VPN subnet

I wrote a strongSwan guide a while back which I followed. I then installed isc-dhcp-server and configured strongSwan for DHCP. Everything works fine except clients cannot SSH to the VPN server or other clients on the VPN subnet (10.0.2.0/24). I…
sunknudsen
  • 701
  • 3
  • 14
  • 28
0
votes
0 answers

IKEv2 Need a small help on Strongswan

I'm trying to create an IKEv2 Strongswan VPN server (U5.7.2/K5.3.0-42-generic) since two days on my personnal VPS (Ubuntu 19.10) to make some tests before implement it on the Unifi equipment of my work (I hope that will be possible) I've used…
mathpro
  • 1
  • 2
0
votes
3 answers

Access from VM instance connected to Google Cloud VPN tunneled to peer VPN

I have an instance (Linux-based) connected to a Google VPC Network that itself has a route to a peer VPN via IpSec Tunnel (IKev2). The VPN Tunnel has Status Established in Google Cloud so everything seems to be up and running. What do I have to…
Ohan
  • 1
0
votes
1 answer

Setting up Strongswan site to site VPN on Google Cloud instance

I've installed Strongswan on 2 Google Debian instances in separate projects (actually separate accounts) so there's no route between them on the internal ip's. Ultimately I need to allow VPN connection from outside the Google cloud. I'm pretty much…
Martin Moore
  • 105
  • 2
0
votes
0 answers

ipsec strongswan UP but no routes

I have a server (Debian 10) behind a NAT router. In this server are running multiple VMs. I want to establish an IPSec connection to a server on the Internet. Here are my ipsec.conf files on both sides: On local server: config setup charondebug =…
philippe
  • 2,303
  • 4
  • 32
  • 53
0
votes
2 answers

Route traffic between OpenVPN network and IPSec

On the Server are two connection established (IPSec and from OpenVPN client). On the server I see subnet in IPSec, but not from OpenVPN client. On the server is firewalld active, here is public zone: public (active) target: default …
kbu
  • 255
  • 4
  • 14
0
votes
0 answers

Can't RDP or FTP to Azure VM via Site-to-Site VPN

I have a VM (Windows Server 2019) that's running in Azure and I want to be able to 'control' the VM via our on-premise network. I have a Fortinet firewall configured to make an IPSEC-tunnel to an Azure VPN gateway. So far so good, the tunnel is…
Mee
  • 1
0
votes
0 answers

How can StrongSwan server for IPSec VPN automatically advertise routes?

From our team's experience so far, we have found out that if you want to connect to an IPSec VPN it does not automatically advertise the route to the client and it has to be done manually in the client. Is this a bug, missing configuration or a…
J. Doe
  • 179
  • 1
  • 9
0
votes
1 answer

What Does This L2TP/IPSec Error Mean?

I am trying to connect to a Cisco Meraki VPN that uses L2TP/IPsec. On my side I am using Libreswan/NetworkManager to configure my connection. When I try to connect, I get logs as follows: Mar 02 11:29:45 eyrie NetworkManager[375]:
Sam Gardner
  • 1
0
votes
1 answer

Strongswan IPSEC Tunnel block traffic one way

I've set up a working Site to Site IPSEC Tunnel with strongswan on a debian 9 machine. However I have a requirement about how the traffic should work : The network on Site A can send packets to Site B Network and receive acks. Site B can only…
Ror
  • 321
  • 3
  • 16
-1
votes
1 answer

How to quickly and easily set up and maintain VPN's ? (Have Juniper SSG-140)

We have an SSG-140 by Juniper (similar to a netscreen 25, just a newer version of ScreenOS and more physical ports). I find setting up new VPN profiles to be a PITA. I have to follow a bunch of steps, test it out, etc etc. I find running an SSH…
Jonesome Reinstate Monica
  • 5,445
  • 10
  • 56
  • 82
-1
votes
1 answer

Openswan and OpenVPN

I have installed Openswan and have configured IPSec tunnels and they work perfect until i install OpenVPN. Now i can't find out way the ping wont work. When i execute the "service ipsec status" it gave me that the tunnels are up. But when i try to…
IvanCD
  • 27
  • 1
  • 8
-1
votes
1 answer

Openswan stopped writing to /var/log/secure after log deletion

I deleted the log intentionally but it seems like Openswan is not creating a new one on it's own. I tried restarting the service or even creating an empty file. Nothing works. What can I do besides reinstall?
JustAGuy
  • 639
  • 3
  • 23
  • 38
-1
votes
2 answers

racoon-tool doesn't generate full racoon.conf file in /var/lib/racoon/racoon.conf

I am using ipsec-tools/racoon to create my VPN. I am using racoon-tool to configure racoon.conf but when I run racoon-tool reload it only generates the first section - Global items. When I run racoon-tool I get: # racoon-tool reload Loading SAD and…
robthewolf
  • 151
  • 7
1 2 3
68
69