Highest Voted 'strongswan' Questions - Server Fault Stack Exchange

0

votes

0 answers

IPSec responder doesn't create a route when connection is established

I have a Strongswan IPSec configuration which used to work and I do not know what changed, but my Gateway machine (responder) doesn't create a route to the initiator (the initiator gets ip 172.13.14.2) I can create a static route to the…

networking ipsec strongswan

asked Sep 30 '19 at 06:24

Kostadin Krushkov

145
1
3
8

0

votes

1 answer

IPsec - internet traffic forwarding from clients

I have an IPsec tunnel up and running (pure IPsec, without L2TP/GRE using strongswan 5.5.1) on Debian 9 VPS instance. Currently it is IPv4 only so net.ipv4.ip_forward is set to 1 in sysctl. Clients can successfully connect to remote instance over…

iptables vpn routing ipsec strongswan

asked Sep 08 '19 at 17:21

gudvinr

1
1

0

votes

1 answer

DHCP for a VPN/Router

I'm running a custom router (Ubuntu 18.04) which uses a "bridge mode" LTE/4G modem (connected via. ethernet). My ISP uses DHCP and hands out 10.x addresses which get assigned to the external NIC of the router. I've also got StrongSwan set up on the…

vpn dhcp router strongswan

asked Sep 08 '19 at 13:07

Robin

305
1
3
9

0

votes

0 answers

StrongSwan, Let’s Encrypt and a FreeRadius Server

i config StrongSwan + with Let’s Encrypt ssl work fine but when i connect it to FreeRadius server i got error in 4 response and client side get error user authentication failed 13[NET] received packet: from 5.212.174.225[4500] to…

ubuntu-18.04 strongswan freeradius

asked Sep 08 '19 at 07:37

SaTaN InSiDe

1

0

votes

1 answer

Some VPN traffic blocked to secure endpoints

I have a VPN server (strongswan) used for testing that I connect to via IKEv2 on a variety of systems (here, I tried Windows, Ubuntu, & Android), normally without issues. This morning, I was on a train in the UK (a Transpennine Express, which use…

vpn https ipsec strongswan opendns

asked Sep 02 '19 at 22:21

LTPCGO

508
1
3
15

0

votes

0 answers

how to do active active load balacing in strongswan?

I want to load balance my IPsec tunnel data I've got two wan lines in company A and one wan line in company b. I want to load balance my data packet in company A. does anybody have a configuration sample file of strongswan for explanation

load-balancing ipsec strongswan

asked Aug 22 '19 at 13:22

sam king

1
1

0

votes

2 answers

Setup l2tp using Strongswan

I setup ikev2 using Strongswan, Now I need to add l2tp support to that What is the best and easy method to add l2tp support to Strongswan? Appreciate for any help

ipsec strongswan l2tp xl2tpd ikev1

asked Aug 20 '19 at 08:25

Farhad Sakhaei

131
2
10

0

votes

1 answer

strongswan not establishing connection

I'm creating a VPN using StrongSwan. It's my first time using this tool. I followed a tutorial to set up. I've hit a blocker whereby the peer connection times out. The status is 0 up, 1 connecting. I have tried on different servers, the same issue…

amazon-ec2 vpn strongswan

asked Aug 18 '19 at 21:19

leaner

1
1

0

votes

1 answer

ipsec/strongswan gateway extending

I have created an ipsec tunnel on Ubuntu between two nodes successfully and I can ping nodes in the other networks successfully. My question is how do I add a route to another node (not the vpn node) so that it can send traffic on a specific ip…

networking iptables ipsec strongswan

asked Aug 16 '19 at 15:23

user9647

1

0

votes

0 answers

StrongSwan IKEv2 connected but no internet on some internets

I set up the StrongSwan and IKEv2 as remote access on CentOS 7, And it is working great but on some internets (not all, most ADSL modems or 4G modems) it connects but there is no internet access on the VPN connection I am using eap-mschapv2, and…

iptables vpn ipsec strongswan ikev2

asked Aug 10 '19 at 11:04

Farhad Sakhaei

131
2
10

0

votes

1 answer

Connecting strongswan to badly configured openswan

I'm a bit stuck with configuring strongswan to connect to my office network as it refuses to verifiy the right side in any way, i was wondering if anyone knows of a way to just tell strongswan to ignore the server certificate and finish connecting?…

strongswan openswan smoothwall

asked Jul 28 '19 at 16:58

Snipzwolf

101
2

0

votes

1 answer

L2TP over IPSEC strongswan/xl2tpd slow connection debian 9 and 10

I have tried almost anything - my internet connection 500 Mbit/s I connect from the same external IP subnet so my speed to the server is also 500 Mbit/s. When i use wget from my l2tp server i have 450 Mbit/s download. When i connect to this server…

debian ipsec strongswan l2tp

asked Jul 11 '19 at 07:05

Kriss

321
3
17

0

votes

1 answer

How can I make sure ping traffic over ipsec is going outside?

I've got a VPN tunnel (ipsec / StrongSwan) setup, connected. The other side is apparently able to ping me through the tunnel. However a ping from my side is said to be never received on the other side. The other side (that I cannot control) is thus…

networking vpn firewall ipsec strongswan

asked Jun 17 '19 at 07:32

Laurent Grégoire

121
7

0

votes

1 answer

Strongswan cannot authenticate with FreeRADIUS server: DNS error

I'm trying to set up RADIUS auth with my Strongswan server. I get the following error: Jun 2 20:51:47 nl1 charon: 17[LIB] resolving 'radius.server.com' failed: Name or service not known Jun 2 20:51:47 nl1 charon: 14[IKE] initiating EAP_RADIUS…

centos vpn radius strongswan

asked Jun 03 '19 at 00:58

Keanu

1
1

0

votes

1 answer

How can I find (or compute) a client MAC address when using the strongSwan DHCP plugin?

Server strongswan.conf libtls { suites = TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA } charon { plugins { dhcp { # Always use the configured server address. force_server_address = yes # Derive user-defined MAC address from hash of…

dhcp-server strongswan

asked May 24 '19 at 11:45

sunknudsen

701
3
14
28

Questions tagged [strongswan]