Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ipsec]

IPsec (Internet Protocol Security) is a protocol for securing IP communications by authenticating and encrypting each IP packet of a communication session.

IPsec (Internet Protocol Security) is a protocol for securing IP communications by authenticating and encrypting each IP packet of a communication session.

1031 questions
4
votes
4 answers

Cisco ASA 5505 - need more site-to-site VPNs

I'm using a Cisco ASA 5505 50-user firewall in a co-location facility. The systems at this location are performing monitoring of additional remote sites (also running Pix or ASA devices) I've established site-to-site tunnels, but have hit the…
ewwhite
  • 197,159
  • 92
  • 443
  • 809
4
votes
3 answers

What might prevent IKE handshake success in building an IPSEC tunnel?

We use Cisco ASA for our IPSEC VPNs, using the EZVPN method. From time to time we encounter problems where an ISP has made a change to their network and our VPN stops working. Nine times out of ten the ISP denies that their change could have…
dunxd
  • 9,632
  • 22
  • 81
  • 118
4
votes
2 answers

What can an ISP do to block IPSEC traffic?

Every so often we encounter a problem where we cannot get an IPSEC VPN tunnel to work. Sometimes we know the local authorities restrict use of IPSEC (e.g. Bangladesh), and have to get some kind of exemption. Other times the ISP changes something…
dunxd
  • 9,632
  • 22
  • 81
  • 118
4
votes
3 answers

How to lock down a Windows 2008 Server before connecting it to the internet

We're a very small company, about to install a new server at a colocation company. The plan is to install the OS, SQL, and IIS, test it, then courier it to the hosting company. It will then presumably appear online, ready for further set up. We…
ChrisA
  • 316
  • 2
  • 10
4
votes
2 answers

IPSec with EC2 instance

Is it possible to setup an IPSec connection between my linux machine and a linux Ec2 instance? I can see the public IP address of EC2 but there is no interface listed in the instance associated with that IP (there is only eth0 with some 10.x.x.x…
bonzi
  • 151
  • 1
  • 6
4
votes
2 answers

iOS/Mac-Compatible IPSec VPN Server on Ubuntu

I pay for a VPS from a Xen VPS host and the load on it is fairly light, so I'd like to run a VPN off of it. The configuration I'm shooting for is "roadwarrior"-style, as I'd like to use it to secure connections from my iPhone and Mac when I'm not at…
Carter Allen
  • 93
  • 1
  • 8
4
votes
1 answer

Find out which encryption and hash algorithm is used by strongswan ipsec

I have multiple productive IPSec VPNs on a Debian-based Linux Server using StrongSwan. Currently I am busy updating my documentation with details about each VPN. Unfortunately the IKE encryption algorithm and hash algorithm is not set explicitly. I…
Bob Meier
  • 79
  • 3
4
votes
2 answers

IPSec tunnel between FortiGate and iPhone / iOS - Works except for DNS / Wins

I have configured my Fortigate with a new VPN IPSec tunnel to allow the iOS Cisco client to connect. That works fine. I can RDP to my servers, browse to my servers via IP address, etc. But, the iPhone does not resolve my internal IP addresses. I…
user57988
4
votes
2 answers

PPTP/GRE Multi-forwarding NAT IPTables Example

Google is showing me some returns on PPTP/GRE NAT through iptables/netfilter that will allow multiple connections. However, I am not finding an example of using this pptp helper module that allows for this. Anyone done this before?
Kyle Brandt
  • 83,619
  • 74
  • 305
  • 448
4
votes
2 answers

Windows 7 VPN Client Default IPsec Configuration?

I'd like to use the windows vpn client for client-site vpn to my linksys rv042. As far as I can tell, the windows VPN client doesn't provide a lot of flexibility in its IPsec settings. Assuming full configurability on the site end of a client-site…
bwerks
  • 752
  • 3
  • 10
  • 22
4
votes
0 answers

Trying to get a new user up on pfSense IPSec VPN; Config file import failed, now getting gateway errors

Caveat: I am not a sysadmin, so please forgive the n00bness of the query. We have a new user and I'm trying to get them up on VPN. We use pfsense as an IPSEC endpoint. This person is using Shrewsoft for the client. I had created an entry in pfsense…
Chris
4
votes
2 answers

How to make iPhone Cisco VPN client work with ASA with certificate authentication

I have an ASA that's providing IPsec VPN services using certificate authentication (no xauth, just the certs). It works perfectly with the Cisco IPsec VPN Client. Now I'm trying to let iPhones connect. I've installed the CA cert and a client…
Ben Jencks
  • 1,361
  • 8
  • 13
4
votes
2 answers

Using Ubuntu Karmic as an L2TP Client for VPN

I'm trying to connect to a VPN service over L2TP using Karmic as a client and it's not working. The only details I have are the remote IP address, username & password, and a shared secret string; this is enough for Windows but doesn't appear to be…
James L
  • 6,025
  • 1
  • 22
  • 26
4
votes
3 answers

How secure is a VPN connection over WiFi?

I travel a lot and connect to public wifi hotspots all the time. What information will be given out if I use VPN within public wifi hotspots? Will the owners or intruders in the hotspot be able to detect the websites I go to (DNS lookups, Traffic…
Pasta
  • 302
  • 1
  • 12
4
votes
1 answer

Multiple Set Peer for VPN Failover

I will have two Cisco routers at Location A serving the same internal networks, and one router in location B. Currently, I have one router in each location with a IPSec site-to-site tunnel connecting them. It looks something like: Location…
Kyle Brandt
  • 83,619
  • 74
  • 305
  • 448
1 2 3
68 69