Highest Voted 'strongswan' Questions - Server Fault Stack Exchange

0

votes

0 answers

How to increase troughput of strongSwan client?

I self-host my own strongSwan VPN server. When running Borg backups to a remove filesystem (running on a different server), I am able to upload at ~ 2.5MB/s without the VPN and ~ 1.5MB/s over the VPN. Is that normal? When I run a test on…

networking strongswan

asked Nov 19 '20 at 14:08

sunknudsen

701
3
14
28

0

votes

1 answer

Client traffic is not routed throught VPN

I try to create a simple Strongswan connection between a server and an Android phone, using Strongswan Android application. My Android phone informations : Android 8.0.0 with Samsung Experience 9.0 It's a Galaxy A5 (2017) model I tried using both 4G…

vpn routing strongswan

asked Nov 03 '20 at 14:40

Dazounet

45
1
8

0

votes

1 answer

How to bind strongSwan to specific IP on VPS with multiple IPs?

I would like client traffic to show publicly as originating from that specific IP (which could be a secondary IP assigned to the same network interface as primary). iface eth0 inet static address 167.99.179.140/24 gateway 167.99.179.1 iface…

ip strongswan

asked Oct 30 '20 at 12:54

sunknudsen

701
3
14
28

0

votes

1 answer

Builder: failed to build TUN device

I try to create a simple Strongswan connection between a server and an Android phone, using Strongswan Android application. My Android phone informations : Android 8.0.0 with Samsung Experience 9.0 It's a Galaxy A5 (2017) model I tried using both 4G…

vpn strongswan android

asked Oct 23 '20 at 15:29

Dazounet

45
1
8

0

votes

1 answer

Strongswan 5.7.x not sending intermediate certificate

I am attempting to use a letsencrypt certificate on my strong swan server; but I also see this behaviour with my own internal CA. When trying to connect from a windows 10 host to a strong swan instance, the Windows host displays one of it's…

windows certificate certificate-authority strongswan

asked Oct 14 '20 at 18:48

Philip Adler

121
4

0

votes

0 answers

StrongSwan site to site no HTTPS traffic but HTTP works

I'm trying to connect to CISCO ASA from StrongSwan from a digital ocean droplet. Below are the configs I have: ipsec.conf conn %default ikelifetime=86400s keylife=60m rekeymargin=3m keyingtries=1 keyexchange=ikev1 authby=psk …

vpn ipsec site-to-site-vpn strongswan

asked Oct 06 '20 at 12:41

Wafula Samuel

121
3

0

votes

0 answers

Strongswan on AWS - PING requests not coming back

I am using Strongswan to connect to a CISCO ASA Firewall through the VPN. My IPSEC status request looks as following: root@ip-172-31-90-211:~# ipsec status Security Associations (1 up, 0 connecting): connection-to-vodacom[1]: ESTABLISHED 6 minutes…

amazon-web-services vpn strongswan

asked Sep 17 '20 at 16:18

rjcossa

1
1

0

votes

1 answer

Configure Strongswan Cipher Settings for iOS 14

FYI, I think I'm in the right community now. Started in StackOverflow since it related to my app, but it relates more to the server side. Anyway, I had a Strongswan VPN set up (Ubuntu 18.04) for an internal business iOS app. The VPN was handled…

vpn strongswan

asked Sep 11 '20 at 00:56

RogerTheShrubber

111
2

0

votes

1 answer

VPN - Ubuntu can't ping server, but Windows can

I'm having problems using a VPN connection on Ubuntu, as a client. Works well on Windows. Ubuntu does not receive the route table... Scenario: Server: Centos 7 with Strongswan (Ipsec, IKEv2) Static IP set to…

ubuntu vpn ipsec strongswan

asked Sep 09 '20 at 21:50

Arvy

131
8

0

votes

1 answer

IKev2 strongswan got deleting half open IKE_SA with x.x.x.x after timeout with iOS device

I installed an IKEv2 strongswan vpn server on ubuntu 18.04 and also I use a valid Let's encrypte CA for that. I want to use it on an application for iOS. So here is the IPSec.conf : config setup charondebug="all" # keep_alive=24h …

vpn ubuntu-18.04 timeout strongswan ikev2

asked Sep 03 '20 at 08:03

mohsen

113
1
6

0

votes

0 answers

Why StrongSwan allows to have same IP on both sides of tunnel?

By mistake, I configured StrongSwan in such manner: left=10.10.10.10 right=10.10.10.10 I saved file, reloaded IPSec confit and restarted StrongSwan daemon. Normally, with such configuration, I would expect some sort of errors in systemctl but…

ipsec strongswan

asked Aug 27 '20 at 18:15

MrSnowMan

119
2

0

votes

1 answer

How to set remoteId and server certificate check Strongswan IKEv2 ubuntu 18.04

I am a new member in IKEv2, and I want to install an IKEv2 vpn on an ubuntu 18.04 server, I did it through this tutorial , but I have a couple of questions. First how can I configure its remote id, because I use a url for that in my ios app. The…

ubuntu-18.04 strongswan ikev2

asked Aug 27 '20 at 10:38

mohsen

113
1
6

0

votes

1 answer

How to configure proposals for IPSEC rekeying

I have a VPN connection via IPSEC (strongswan) running successfully. However, at least once a day the connection breaks. I think it has to do with rekeying, see the logs: Aug 25 02:34:25 myserver charon: 09[KNL] creating rekey job for CHILD_SA…

ipsec strongswan

asked Aug 25 '20 at 07:19

Tim

115
1
5

0

votes

0 answers

StrongSwan config issue: no matching peer config found

I am trying to establish a VPN between my router (running OpenWrt) and my smartphone using IPsec. I followed the guide at https://openwrt.org/docs/guide-user/services/vpn/ipsec/strongswan/roadwarrior As far as I can tell most things are working…

vpn ipsec strongswan openwrt ikev2

asked Aug 09 '20 at 21:02

ahorn42

1
1

0

votes

1 answer

UDP-Packets seem to get lost in IPsec tunnel from Strongswan to AWS cloud - connection works with Openswan

Use case: IOT-device connected through AWS cloud The IOT-device is behind a router that sends all traffic through aws cloud. The IOT-server can not be configured and thus is not part of the AWS cloud For configuration, the IOT-device needs to be…

amazon-web-services ipsec udp strongswan openswan

asked Aug 07 '20 at 13:52

DoRe

41
5

Questions tagged [strongswan]