Highest Voted 'strongswan' Questions - Server Fault Stack Exchange

0

votes

1 answer

Strongswan eap-identity no trusted certificate

Here is the situation : GW installed on CentOS7 with Strongswan 5.7.2 with these plugins loaded : charon pkcs11 tpm aesni aes des rc2 sha2 sha1 md4 md5 mgf1 random nonce x509 revocation constraints acert pubkey pkcs1 pkcs7 pkcs8 pkcs12 pgp…

authentication certificate ipsec strongswan

asked May 21 '19 at 08:52

DSX

385
1
4
18

0

votes

2 answers

How can I assign static IPs to strongSwan clients based on their certificates?

I would like to assign a static IP to each client based on its certificate (using eap-tls). Currently, IP is assigned dynamically.

strongswan

asked May 15 '19 at 13:40

sunknudsen

701
3
14
28

0

votes

1 answer

StrongSwan - windows double password prompt

I had a requirement to use unique virtual IP pool per peer config (identity). The clients would connect using Windows default VPN client and each client when connected should get the virtual IP address from a different pool. Multiple clients can use…

strongswan

asked Apr 22 '19 at 04:39

kaps

1
1

0

votes

0 answers

Strongswan IKEv2 don't check certificate FQDN

Does anybody know how to use Strongswan IKEv2 VPN without validating the FQDN on the CA ? I'm trying to do the following loadbalancing setup using DNS: server.hostname.com -> server1.hostname.com and server2.hostname.com If I connect to…

vpn strongswan

asked Apr 15 '19 at 08:07

Keanu

1
1

0

votes

1 answer

strongswan route traffic to specified IPs only

In my company we have a strongswan vpn that we use to be able to access a git server, The problem is that we are facing MTU issues, so for example when we do something like pip install -r requirements.txt the packages that are located outside of our…

vpn strongswan

asked Apr 05 '19 at 01:00

jperez

1
2

0

votes

0 answers

Trying to setup L2TP and IKEv2 on the same server with Strongswan

I'm attempting to setup both L2TP (for use on my Android phone) and IKEv2 (for use on my Mac) on the same server with Strongswan I'm getting the following error when connecting L2TP, but IKEv2 works fine Apr 4 06:41:41 server charon: 16[ENC]…

vpn ipsec strongswan l2tp

asked Apr 04 '19 at 04:48

Keanu

1
1

0

votes

1 answer

GCloud cannot connect through ssh after vpn tunnel established

I have a VM on Google Cloud serving as vpn gateway. I have followed the steps on this documentation https://cloud.google.com/vpc/docs/special-configurations#settingupvpn The ipsec.conf I use is: conn cnt authby=psk auto=start dpdaction=hold …

ssh vpn google-compute-engine strongswan gcloud

asked Mar 11 '19 at 14:36

Joelo Paredes

1

0

votes

1 answer

Strongswan established connection but cannot ping anything

I received data from certain company to establish s2s connection: Company VPN gateway: 195.x.37.168 IKE: Ikev1 AES256-SHA1 group 2 1440min IPSEC: AES128-SHA1 group 2 3600 sec (60 min) Left VPN gateway: 185.x.192.227 Left side network:…

networking vpn ipsec strongswan

asked Mar 09 '19 at 17:15

piotr712

1
2

0

votes

1 answer

Strongswan site-to-site VPN connected/established but can't ping server

I need to create site-to-site VPN with one server (Not on "strong swan"). I did everything by this article https://blog.ruanbekker.com/blog/2018/02/11/setup-a-site-to-site-ipsec-vpn-with-strongswan-and-preshared-key-authentication/ config setup …

ipsec site-to-site-vpn strongswan

asked Jan 11 '19 at 09:41

Yesbolatov Akezhan

1
1

0

votes

1 answer

strongswan upgrade from 5.1.2 to 5.7.1

I am using strongswan 5.1.2 on Ubuntu and have installed it using apt-get. I am trying to upgrade to strongswan 5.7.1. I first removed the current installation using the following commands: sudo apt-get --purge remove strongswan sudo apt-get…

strongswan

asked Dec 06 '18 at 22:38

user1247196

41
1
3

0

votes

1 answer

How do I route traffic from VPN gateway to distant network?

The situation in my environment is as follows: There is a network (213.213.213.128/26) with a VPN gateway (213.213.213.155). There is a distant network (10.42.0.16/28) on AWS which is connected with 213.213.213.128/26 through AWS VPC VPN which has a…

vpn routing strongswan

asked Nov 08 '18 at 18:04

Daniel

101
3

0

votes

1 answer

verbose output for ip xfrm command?

I have an up script for strongswan that adds policies like this: ip xfrm policy add dir in src $PLUTO_PEER_CLIENT dst 0.0.0.0/0 proto any varl src $PLUTO_PEER dst $PLUTO_ME proto esp mode tunnel reqid $PLUTO_REQID level required priority 1500 mark…

centos iptables vpn ipsec strongswan

asked Oct 08 '18 at 21:37

red888

4,183
18
64
111

0

votes

0 answers

How can I reserve the IPs to the hosts in strongswan?

For Example: when host "91:75:1a:ec:9a:c7" connect for first time assign IP "10.19.48.15" when host "88:23:yd:q2:9y:b3" connect for first time assign IP "10.19.48.16" and if they disconnect, next time they get the same IP. is there a way to recerve…

vpn strongswan

asked Oct 04 '18 at 23:38

Angel Montes de Oca

101
2

0

votes

0 answers

where do I tell strongswan to find the ipsec.conf file?

https://wiki.strongswan.org/projects/strongswan/wiki/IpsecStarter Im on centos. Centos renames the ipsec command "strongswan". i put ipsec.conf in /etc/strongswan but it doesnt read it when I run strongswan start. I edited…

centos strongswan

asked Sep 26 '18 at 20:40

red888

4,183
18
64
111

0

votes

0 answers

VPN setup for remote access on ubuntu 18.04

I have successfully setup a vpn server using this tutorial: https://www.digitalocean.com/community/tutorials/how-to-set-up-an-ikev2-vpn-server-with-strongswan-on-ubuntu-18-04-2 . (but using pre-shared key, not username/password) I can now connect…

vpn ufw strongswan ubuntu-18.04

asked Sep 05 '18 at 14:31

user1005265

1
1

Questions tagged [strongswan]