Highest Voted 'strongswan' Questions - Server Fault Stack Exchange

0

votes

0 answers

Centos and Strongswan

I'm trying to implement a strongswan solution for a site to site tunnel between me and a third party vendor. My tunnel establishes fine between myself and the vendor however I am wondering if this is the correct way of doing this? When I attempt…

linux networking centos strongswan

asked Nov 24 '14 at 21:24

Flipped

11
1

0

votes

0 answers

How to debug IPsec L2TP authentication failure (Ubuntu StrongSwan client to Windows Server 2012)

I'm trying to connect via IPsec L2TP to a Windows Server 2012 server. Both the clients and the host are behind a NAT. I can connect from a Windows 7 machine without any problems, but when trying to connect using the same password from an Ubuntu…

ubuntu windows-server-2012 ipsec l2tp strongswan

asked Nov 03 '14 at 23:11

Ian Mackinnon

183
2
15

0

votes

1 answer

How to check the packets is actually coming thru the VPN Tunnel

I have setup up a VPN server with strongswan. My VPN is coming up, but I want to make sure packets are actually going through the tunnel. Are there some commands to check this on the VPN server/Strongswan ?

ubuntu vpn strongswan

asked Sep 25 '14 at 10:21

salz

1

0

votes

0 answers

vServer: Configuring single (/128) assigned IPv6 addresses for use as IP address pool for IPSEC (Strongswan) road warriors

I've a new (dev) vServer up and running. Unfortunately the provider only hands out single IPv6 addresses (not even /64 subnets). Now I am a bit confused how to achieve the following: I want to use those addresses (which are all from totally…

ipv6 ipsec ip-address ip-routing strongswan

asked Jun 15 '14 at 12:55

khaos

213
2
8

0

votes

1 answer

StrongSwan + xl2tpd client timeout between 2-5 minutes

I run CentOS 6.4 on Amazon EC2, using xl2tpd-1.3.1 from EPEL repository together with StrongSwan 5.0.4. I setup a simple IPSec connection: conn l2tp type=transport keyexchange=ikev1 rekey=no authby=psk leftsubnet=0.0.0.0/0 …

vpn ipsec l2tp strongswan xl2tpd

asked Nov 03 '13 at 09:27

Howard

303
2
4
11

0

votes

2 answers

what does "openssl FIPS mode(0) unavailable" mean?

I compiled and installed strongswan ipsec vpn successfully, as demonstrated by the fact that the service starts successfully: as3:~# ipsec restart Stopping strongSwan IPsec... Starting strongSwan 5.0.4 IPsec [starter]... as3:~# When I run…

ipsec openssl strongswan

asked May 16 '13 at 03:07

fisherman

101
1

0

votes

0 answers

Strongwan S2S VPN to Fortinet

I want to hide my local hosted server behind a public VPS. So i established a VPN between my local firewall(fortinet) and my vps(strongswan). Diagram The VPN is up but no traffic at all. Even in tcpdump i can't see any traffic coming from the tunnel…

iptables site-to-site-vpn strongswan fortigate masquerade

asked Aug 07 '23 at 13:46

ben

1

0

votes

0 answers

How to set up StrongSwan (behind NAT) IKEv2/IPSec with PSK (pre-shared key)?

I set up my strongswan server on a virtual Ubuntu 22 behind a NAT. It works well for RCA using login password. But I need to work using only PSK key. I tried a bunch of options, I can not connect from my android. At the moment the configs are: cat…

nat strongswan ubuntu-22.04 ikev2

asked Jul 11 '23 at 15:35

Дмитрий В.

1
1

0

votes

1 answer

Strongswan ike phase 1 failed: "IKE_SA being deleted"

I'm trying to build IPsec tunnel between my Strongswan cloud instance to the Cisco CSR 1000V which is from ISP. According to the form given to me, I have to configure with the following factors in mind Phase 1 Authentication Method: PSK Encryption…

ipsec site-to-site-vpn strongswan digital-ocean ikev1

asked Jul 05 '23 at 03:10

9ieR

1
1

0

votes

1 answer

ipsec/strongswan - tunnel is up, traffic is sent and received but replies are ignored

I need some help, I set up a strongswan IPsec tunnel with ESP and IKEv2, the tunnel is UP and remote sees packets coming and answers them, but my server is ignoring? answers. The tunnel is between my Debian 11 server holding both the IP 10.0.1.1 and…

vpn ipsec strongswan

asked Jun 30 '23 at 10:30

Tazq

1
1

0

votes

1 answer

How to investigate not received TCP packets sent from VPN on the same LAN?

I'm setting up a VLAN on the cloud where many servers will connect to a remote host via VPN. The setup is as follows: Their Host d.d.d.72 | | | Their VPN Public IP…

firewall routing tcp ipsec strongswan

asked Jun 22 '23 at 05:06

Younes

233
2
6

0

votes

0 answers

Strongswan IPSEC specific rightsubnet

I have strongswan ipsec setup installed in ubuntu OS. I have static public ip 103.x.x.x and vpn clients subnet 10.100.100.2/24. I have 2 clients with ubuntu OS. I was able to ping client 1 to client 2 and vice versa and they have 103.x.x.x public…

ipsec strongswan

asked Jun 19 '23 at 06:00

kramnitsuj

1
1

0

votes

0 answers

Ubuntu - IPSec VPN with Dual Stack / Strongswan

I'am trying to setup a IPSec VPN (ike1) for our Linux clients. But we need dual stack with ipv4 and ipv6. The endpoint is a Fortigate firewall. With two phase2, one for IPv4 and one for IPv6. The setup is as followed: config vpn ipsec…

ipsec strongswan fortigate ubuntu-22.04

asked Jun 12 '23 at 10:34

premar

21
2

0

votes

1 answer

Howto get server host into strongswans virtual IP address subnet

I have configured a VPN server and VPN client with strongswan with the following ipsec.conf configuration settings Server ipsec.conf conn ikev2-vpn also=rw-base auto=add compress=no keyexchange=ikev2 forceencaps=yes rekey=no …

ipsec strongswan virtual-ip

asked Jun 02 '23 at 18:43

Ole K

101
3

0

votes

1 answer

strongwan disable user access

Hwo can I disable access for a particular user with strongswan public key authentication? So I have pub key authentication working. the SAN is the email and is the id. Is there a way to reject authentication for a particular userid (rightid) ? I…

ipsec strongswan

asked Jun 01 '23 at 11:59

noone392

113
1
8

Questions tagged [strongswan]