strongSwan is an open source, multi-platform IPsec-based VPN solution, with IKEv2 & IKEv1 support
strongSwan is an open source, multi-platform ipsec-based vpn solution, with IKEv2 & IKEv1 support.
More information can be found on strongswan.org.
Questions tagged [strongswan]
435 questions
0
votes
0 answers
Strongswan remote_ts as 0.0.0.0/0, now I can't access my vps
I have a vps, and I tried to install a site-to-site vpn using stronswan and swanctl, I accidentally put remote_ts to 0.0.0.0/0 and now I can't access my vps through ssh.
How can I regain access ?
Mohammed Hafiz
- 11
- 2
0
votes
0 answers
DO to Azure, site to site VPN, can my client private IP send the traffic?
Using Strongswan IPSEC
eth0 IP is xx.xx.129.177 (which is our public IP and the one currently sending requests)
the gate way to eth0 is xx.xx.128.1
eth0:1 IP is 10.16.0.24/16 - Client expects this address to deliver TCP requests and make the SQL…
Jason is a robot
- 11
- 2
0
votes
0 answers
VPN client creation on Ubuntu with strongswan fails
I've set up a L2TP VPN server on my home router and the connection between Windows 10 clients works properly. Now I want to set up a VPN client on a Ubuntu 18.04 machine. I've used this configuration (x.x.x.x is the static IP of my home router and…
0
votes
0 answers
Routing connection to Azure DB through StrongSwan IPSec site-to-site tunnel
I have a Linux Strongswan IPSec site-to-site connection up and stable to an Azure Cloud Network, I'm trying to route an sql connection with a python script through the tunnel to an Azure database in the clients network but I keep getting timed out…
Jason is a robot
- 11
- 2
0
votes
0 answers
No Route To Host With StrongSwan Tunnel Interface
I'm using Ubuntu 20.04 with Strongswan 5.8.2. Configured using the Route-Based VPN instructions.
The site-to-site tunnel establishes and is stable, however, I can't route traffic over it. When I try to ping, ssh, curl I get a "No route to host"…
Carlo Mencarelli
- 101
- 1
0
votes
0 answers
Centos7, Strongswan IKEv2 rout client traffic to specified gateway
in my Centos7 (static ip=192.168.0.1) I set a pptp connection client to mikrtik server (static ip=172.20.20.1)
ppp0: mtu 1450 qdisc pfifo_fast state UNKNOWN group default qlen 3
link/ppp
inet…
Sahar Koochaki
- 1
- 1
0
votes
0 answers
Strongswan IPSec tunnel between linux and windows : "NO_PROPOSAL_CHOSEN"
I'm trying to set up a VPN tunnel between a win10 host and a ubuntu host. Below the configuration I have:
/etc/ipsec.conf
config setup
charondebug=1
uniqueids=yes
strictcrlpolicy=no
conn %default
ikelifetime=60m
…
0
votes
1 answer
Strongswan + Openvpn. Strongwan is catching all traffic, including less specific subnets
Hi on the same server I use openVPN with Strongswan to interconnect 2 networks
Routes populated via strongswan are less specific (10.0.0.0/8)
Routes populated via openvpn are more specific (10.1.1.0/24)
Initially, I was thinking that this won't be…
Golgot
- 115
- 6
0
votes
1 answer
How do I install dhcp plugin for Strongswan on Ubuntu focal
I've installed strongswan, libstrongswan-standard-plugins and libstrongswan-extra-plugins packages and it seems that dhcp plugin is still not there.
How do I install it? Is my only option to build from source?
starteleport
- 103
- 3
0
votes
0 answers
Issues configuring strongSwan client on AWS instance for site-to-site VPN
I am trying to setup a IPSec VPN client on a debian-10 AWS instance.
Unfortunately, I do not have access to the VPN server as it is configured by another party, so all I know is they told me it is configured for my my-aws-public-ip.
I am trying to…
deann
- 101
- 1
0
votes
1 answer
Why does StrongSwan charon-cmd client require the --cert command-line option for multiple CA chain certificates?
I have a StrongSwan charon server on Ubuntu 18.04. I connect to this server with a StrongSwan charon-cmd client from another Ubuntu Linux machine.
The command I use from the client machine to connect to the server is:
charon-cmd --cert…
deltamind106
- 168
- 1
- 8
0
votes
0 answers
Failure connecting Mikrotik to Strongswan using IPSec
hope you are doing well.
I am trying to connect a Mikrotik RB2011RM to Strongswan running on a cloud server. I cannot get past Phase 1.
I have searched through google and found some great examples and still cannot figure out what is the problem. …
Mike Myers
- 1
- 1
0
votes
2 answers
How to link ipsec clients with different connections in StrongSwan?
I use strongswan ipsec as VPN gateway for mobile devices (Android). In StrongSwan config I've setup 2 connections (two different subnets 10.10.10.0/24, 10.10.20.0/24 with different routing policies) for 2 different groups of users.
And I don't…
alex
- 101
- 2
0
votes
2 answers
How is IPsec (strongswan) working without opening ports in UFW?
I needed to setup a site-to-site VPN between servers A and B, where server A is being managed by me and server B is being managed by a client.
Server A is running Ubuntu 20.04 and I am using strongswan to setup the VPN on my end. I am using UFW to…
Ashish
- 165
- 1
- 7
0
votes
1 answer
Cannot get split tunneling to work in Strongswan
I am trying to setup Strongswan for VPN split tunneling.
What I want is only the subnets 10.88.0.0/16 and 10.0.200.0/24 is accessible through the VPN tunnel. Everyting else is handled throught the default gateway for the network.
All clients are…
Lasse Michael Mølgaard
- 947
- 10
- 27