Highest Voted 'strongswan' Questions - Server Fault Stack Exchange

0

votes

0 answers

Strongswan client on local router - clients cannot access network at all?

I've setup strongswan on the router (Debian Stretch) and strongswan configuration works well, but only for connections issued from router. However, once the tunnel goes up clients behind the router (192.168.10.0/24 from below) lose all connectivity…

iptables routing strongswan

asked Nov 08 '17 at 17:45

Alexey Kamenskiy

794
1
9
23

0

votes

1 answer

Increasing Connection Limit of StrongSwan VPN (L2TP/IPSec)

I have VPN server and I have approximately 500 customers and all of them using same username/password credential to connect my VPN server but connection issues starting after connecting 250 users to VPN server. How can I increase the limit of…

vpn ipsec strongswan

asked Oct 29 '17 at 13:41

user39110

173
6

0

votes

2 answers

Strongswan IKEv2 for iOS devices

I want to connect a Strongswan IKEv2 VPN on iOS devices. It uses FreeRADIUS server for AAA of users. It's already working perfectly on Android and Windows devices. but when I try to connect using the iOS device it shows the below logs. I'm manually…

vpn ipsec strongswan ikev2 ikev1

asked Oct 06 '17 at 06:25

Varun Taliyan

26
1
7

0

votes

0 answers

Strongswan has connection but no tunnel

I am using strongswan as a vpn server for road warriors. I have two machines running the software, one on raspbian and one on CentOS 7. The raspbian machine works fine but not the CentOS one. The problem with the CentOS one seems to be that packets…

vpn ipsec strongswan

asked Oct 05 '17 at 16:36

Qijun Tan

101
2

0

votes

2 answers

Masquerade clients as the StrongServer in order to access resource through the IPSEC tunnel

+----------+ +-------+ Client 1…

iptables ipsec strongswan

asked Sep 28 '17 at 12:51

Jinesh Choksi

151
1
3

0

votes

2 answers

Strongswan site-to-site VPN connected/established but can't ping servers on remote subnet

I've been trying to resolve a site to site VPN issue for days. I am connecting to a corporate VPN that I do not have control over or access to the settings of. I am running a Digitalocean VPS (not sure if DO specific infrastucture plays a role here)…

linux-networking vps ubuntu-16.04 strongswan

asked Sep 28 '17 at 10:05

twmbx

13
1
5

0

votes

1 answer

Strongswan Installation for CentOS 7

I'm want to use IKEv2 VPN on a CentOS 7.* VMs, and I want to Authenticate the users with our RADIUS server. Currently, I'm using yum install strongswan command to install the strongswan repo, but it doesn't load the eap-radius plugin by default. is…

yum ipsec rpm radius strongswan

asked Aug 31 '17 at 07:45

Varun Taliyan

26
1
7

0

votes

1 answer

Use MySQL for storing secrets in Strongswan VPN

I have a working Strongswan IKEv2 VPN, i uses eap-mschapv2 as right auth. It's working fine as long as I use the ipsec.secrets file to store the user credentials. # ipsec.secrets file : RSA vpn-server-key.pem arav %any : EAP "accessit" But I want…

mysql ipsec strongswan ikev2

asked Aug 04 '17 at 08:40

Varun Taliyan

26
1
7

0

votes

0 answers

Routing to L2TP/IPSec VPN (strongswan, xl2tpd). Can ping server inside VPN, cannot ssh (SSH is not ESP payload)

I created a L2TP/IPSec tunnel and I am struggling with routing, I cannot SSH to a machine in the remote network. My local system is Debian buster (current testing). Here is my local networkg config; interface ppp0 is the tunnel interface. #ip a 2:…

routing ipsec l2tp strongswan xl2tpd

asked Jul 22 '17 at 12:03

kmwil

225
1
2
12

0

votes

1 answer

StrongSwan Host can't reach clients (Double NATed)

I have successfully established a VPN Ikev2 tunnel with a Win10 Pro agile VPN client and the linux StrongSwan server. The client is able to ping the strongswan server (192.168.0.11) and any other machines in the 192.168.0.0/24 network. But the…

nat strongswan

asked Jul 08 '17 at 14:02

Andreas

11
4

0

votes

1 answer

Unable to connect from Linux (Ubuntu) to SonicWall VPN

I am trying to connect to a SonicWall VPN using StrongSwan from Linux (Ubuntu). I can connect from a Windows Machine using the SonicWall Global VPN client, which uses a shared secret. Following are the instructions to connect using that…

linux vpn sonicwall strongswan

asked May 05 '17 at 02:19

Carlos Eugenio Thompson Pinzón

101
1
6

0

votes

0 answers

How to write Ipsec.conf file from specifications

If you given the following specifications from a partners. How would you write a ipsec.conf file to connect to the tunnel. Authentication Method PSK Pre-Shared Key Encryption Scheme IKE Diffie-Hellman Group Group 2 Encryption Algorithm …

vpn ipsec strongswan

asked Apr 18 '17 at 08:52

Acacia

16
1
7

0

votes

1 answer

Routing specific traffic through StrongSwan VPN

I am expected to make http requests to a server (local IP 172.XX.XX.XX) behind a gateway of a telecom. A VPN has been setup between my VPS 46.XX.XX.XX and to gateway 193.XX.XX.XX. However I need to make a SOAP API request with end point say…

iptables vpn ipsec strongswan

asked Apr 16 '17 at 01:32

Acacia

16
1
7

0

votes

1 answer

avoiding loopback SAs w/ strongswan transport-mode IPv6 "trap-any"-style configuration for local subnet

I have a StrongSWAN configuration inspired by the trap-any test case: conn %default ikelifetime=60m keylife=20m rekeymargin=3m keyingtries=1 conn lan right=%any leftsubnet=fd12:3456:7890:abcd::/64 …

ipsec strongswan

asked Mar 29 '17 at 22:52

Charles Duffy

946
2
10
19

0

votes

1 answer

Permission issue with charon-cmd on ubuntu

I am using charon-cmd to connect to strongswan vpn on a ubuntu host. When I use the command, it gives me some kind of permission error. root@8add2362b05f:~# sudo charon-cmd --host example.com --p12 ipsec_vpn_vert/client.cert.p12 --identity…

ipsec ubuntu-16.04 strongswan vpn-client

asked Mar 22 '17 at 15:31

BTR Naidu

627
1
7
14

Questions tagged [strongswan]