Highest Voted 'strongswan' Questions - Server Fault Stack Exchange

2

votes

1 answer

How to store hashes in ipsec.secrets when using Strongswan with eap-mschapv2?

I am using eap-mschapv2 as an authentication method. It requires to store plain text passwords in ipsec.secrets. I.e. I have a password like this: user : EAP "mypassword" I want to use something like this: user : EAP…

authentication ipsec encryption strongswan eap

asked Nov 16 '17 at 12:29

Oleksandr

733
2
10
17

2

votes

0 answers

Strongswan IPSec VPN tunnel with Public IP and no right subnet

I have to make VPN tunnel in which other party has sent me just their public IP(y.y.y.y) and no subnet. Am using Strongswan 5.3.5. I know the connection is possible is possible without rightsubnet thanks to Possible to IPSec VPN Tunnel Public IP…

vpn ipsec strongswan

asked Sep 11 '17 at 09:04

Divyansh Singh

121
6

2

votes

1 answer

No outputs from command 'ip xfrm state' to show strongswan status

[root@vrouter-ovs ~]# strongswan statusall Status of IKE charon daemon (strongSwan 5.5.3, Linux 3.10.0-327.36.3.el7.x86_64, x86_64): uptime: 5 hours, since Jul 26 01:22:51 2017 malloc: sbrk 1699840, mmap 0, used 536928, free 1162912 worker threads:…

ip strongswan

asked Jul 25 '17 at 14:42

Jeremy

21
2

2

votes

0 answers

IPsec fails with debian and strongswan with PSK

Im having a problem with my new IPsec setup, testing between two nodes. Eveery node is connected to internet using static IP and logs shows how there are prob lems with ipsec.secrets but I can't see where. Node A: Server with Public IP Node B Server…

debian vpn ipsec strongswan

asked Jul 13 '17 at 15:24

deconya

135
3
8

2

votes

2 answers

how to use wildcard certificate with ikev2 on strongswan

I am using a wildcard certificate. I have managed to setup ikev2 protocol, applied my own certificate but it won't work for subdomains. Is there any workaround for this or the wildcard should be of a certain format ?

ssl-certificate strongswan ikev2

asked May 18 '17 at 07:01

Vitalik Jimbei

135
2
7

2

votes

1 answer

Strongswan (IKEv2) not routing after connection established

Here is the issue: I have Linux strongSwan U5.3.5/K4.4.0-72-generic running on Ubuntu 16.04.2 LTS with a Windows 10 Pro client. I have the system set up and am able to tell the client to connect to the server. When a connection is made, the client…

ubuntu networking vpn strongswan

asked Apr 17 '17 at 02:43

user410909

21
2

2

votes

1 answer

IKEV2 configuration file IP pool

I have some problems with configuring VPN using IKEV2. Here is my server configuration file config setup # Uncomment to allow few simultaneous connections with one user account. # By default only one active connection per user allowed. …

vpn ip dhcp strongswan ikev2

asked Oct 13 '16 at 19:53

CROSP

191
1
1
7

2

votes

1 answer

Strongswan: Transport mode with non-specific remote hosts

I am using strongSwan 5.2.1 on Debian Jessie, and am having trouble configuring it to do what I want. Premise In a test environment, I am seeking to use transport mode IPsec between a Linux virtual machine, and a Windows virtual machine configured…

ipsec strongswan

asked Sep 06 '16 at 14:17

William Posters

21
1
3

2

votes

0 answers

Two users behind same NAT (PSK or EAP) - strongswan

I have a strongswan implementation and am running into an issue where when there are two users behind the same NAT, the second one "kicks off" the first one. I was able to resolve the issue using: Machine Certificates. EAP-MSCHAPv2 with unique…

networking vpn cisco openvpn strongswan

asked Jun 02 '16 at 13:29

jdoe

53
5

2

votes

1 answer

Strongswan RA and Strongswan site-2-site with ASA

Task: Establish communication between remote clients (192.168.79.0/24) that are connecting to VPN server (on Ubuntu) and corporate network (10.1.2.0/24) connected to Cisco ASA. Schema: 192.168.79.0/24 <-Strongswan RA-> Ubuntu srv <-Strongswan s2s->…

ubuntu-14.04 ipsec strongswan

asked Mar 11 '16 at 17:02

Coul

109
1
1
4

2

votes

1 answer

Connection of a Server to my home network via Strongswan (received INVALID_ID_INFORMATION error notify)

I try to establish a VPN connection from my root server to my home network via strongswan. I've configured my router (FritzBox 7490) for VPN PSK XAUTH connections. A VPN connection from my Android-Smartphone works. I am struggling with the correct…

vpn strongswan

asked Dec 05 '15 at 14:30

trampi

155
1
2
7

2

votes

0 answers

CentOS + strongswan + iOS VPN API, hal

I'm trying to setup StrongSwan on CentOS for iOS with VPN API. This API uses IKEv2 protocol. Here is my logs + configuration files. When i press connect in iOS device it's getting off in a few moments. It looks like iOS doesn't like some server…

vpn ipsec ios strongswan ikev2

asked Sep 17 '15 at 12:32

Al.Arak

21
2

2

votes

1 answer

Two tunnels with same rightsubnet for StrongSWAN/OpenSWAN

I'm trying to set up the "Option 3" configuration for Google Cloud VPN, with two Google Cloud VPN gateways on the left and StrongSWAN or OpenSWAN on the right: If you have two Peer VPN gateways and two Compute Engine VPN gateways, each Compute…

vpn ipsec google-cloud-platform openswan strongswan

asked Sep 17 '15 at 03:56

lambshaanxy

123
1
5

2

votes

1 answer

Public key authentication with strongswan

I have two systems r1 and r2, and I want to establish an ESP tunnel between them with Strongswan using public key authentication. I have generated public keys, store in r1-pub.pem and r2-pub.pem respectively, in both the systems using openssl. Now…

ipsec public-key rsa strongswan

asked Sep 01 '15 at 04:32

Soumen

123
1
5

2

votes

1 answer

OS X 10.10 to StrongSwan VPN

I'm trying to to test a new (in progress) StrongSwan IPSec VPN server by connecting from OS X 10.10. This is very frustrating because the the logs show a series of "success" messages, but then the system bombs out. I'm also confused as to why the…

vpn mac-osx ipsec strongswan

asked Jul 22 '15 at 06:33

Nicholas Albion

121
4

Questions tagged [strongswan]