Stack Overflow
Stack Overflow

Questions tagged [ipsec]

Internet Protocol Security (IPsec) is a protocol suite for securing IP communications by authenticating and/or encrypting each IP packet of a communication session.

282 questions
3
votes
1 answer

What do xfrm_replay_state_esn fields mean?

I'm trying to understand a little bit more about Linux kernel IPSec networking by looking at the kernel source. I understand conceptually that IPSec prevents replay attacks with a sequence number and a replay window, i.e. if a recipient receives a…
user1118764
  • 9,255
  • 18
  • 61
  • 113
3
votes
1 answer

configure VPN programatically using Protocol- L2TP/IPsec android open source code.

We are looking for configure VPN programatically using Protocol- L2TP/IPsec android open source code. I have tried the…
user909026
  • 41
  • 1
  • 3
3
votes
3 answers

Reading captured packet from command line with tcpdump

I am capturing traffic using: tcpdump -i -nn -s0 -w ike2.pcap Then I am reading the captured file using: tcpdump -vvv -l -r ike2.pcap While reading, the first packet is getting displayed as: 07:22:33.320142 IP (tos 0x0, ttl 64, id…
m.divya.mohan
  • 2,261
  • 4
  • 24
  • 34
2
votes
2 answers

VPN Client implementation specific to application

I wanted to implement the application specific VPN client in android, that is vpn connection once established should be only available to our application and rest of the apps in android device should make use of normal internet connection. To…
user1215845
  • 41
  • 1
  • 2
2
votes
1 answer

How to setup VPN connection from android 13 native VPN client to mikrotik routerOS?

Since L2TP/PPTP VPN connections are not supported on Android 13 anymore, I am wondering how to setup secure VPN connection between Mikrotik router and Android 13 device using native client which has only these options: IKEv2/IPSec…
Bart
  • 1,889
  • 1
  • 21
  • 38
2
votes
0 answers

NAT with IPSec issue in IP Multimedia Subsystem(IMS)

IP Multimedia Subsystem(IMS) encapsulates SIP traffic between UE and P-CSCF (Gm Interface) in IPsec Encapsulating Security Payloads (ESP) payloads. IPsec breaks when a network is behind the NAT. On deploying the IMS on Kubernetes, NAT has been…
rizwan alam
  • 53
  • 5
2
votes
0 answers

how to make multi l2tp client with windows os behind one pulic ip connect to one l2tp server

I have searched many answers over the internet, no one works,like http://woshub.com/l2tp-ipsec-vpn-server-behind/ https://learn.microsoft.com/en-US/troubleshoot/windows-server/networking/configure-l2tp-ipsec-server-behind-nat-t-device The reason Why…
what is what
  • 1,461
  • 2
  • 12
  • 16
2
votes
0 answers

For udp encapsulated esp packets udp header is not taking payload length

In Scapy, when I generate UDP encapsulated packet using SA association, I could see UDP length as 8. Even though I have esp packet after UDP nat header. ETHER > IP > UDP(srcport=4500, dstport=4500) > ESP In above header structure, my expectation is…
Nithin Sen
  • 51
  • 5
2
votes
0 answers

Strongswan IPSEC IKE with Docker Network Subnet

I would like to setup strongswan on my DockerHost in order to allow containers on the leftSubnet which is a docker network subnet to communicate with my rightSubnet in the IPSEC TUNNEL. 10.0.10.0/24 which is my leftSubnet on DockerHost was created…
PakitoSec
  • 53
  • 1
  • 6
2
votes
1 answer

Unable to NAT IP with Iptables and Strongswan in AWS

I've just configured Strongswan and can successfully bring the VPN tunnel up on an AWS EC2 instance but I’m having issues with the traffic because we need to NAT the private IP address of my EC2 instance so all traffic going through the VPN come…
Jason
  • 21
  • 1
  • 3
2
votes
3 answers

IPsec in practice in Java

I am looking into securing network communications (UDP and TCP). It is looking like 'use IPSec' is a good solution. I know this is implemented at a lower level, and the application does not need to see it. However I want my Java application to be…
Jon
  • 1,013
  • 1
  • 10
  • 17
2
votes
0 answers

Windows Server 2016 connection to IKEv2 PSK VPN

I need to configure a Windows Server 2016 to connect to a VPN, using IKEv2 with PSK but I do not find how to achieve this, it seems that Windows can handle IKEv2 using certificate, but in my case I can only connect using a PSK, and I can not find…
Chibraltar
  • 41
  • 3
2
votes
1 answer

Ipsec (strongswan) vpn not working properly with ubuntu 19.04 as client?

i have build a vpn server using strongswan by following this tutorial: https://raymii.org/s/tutorials/IPSEC_vpn_with_CentOS_7.html The server is behind a router the required ports are forwarded. On the vpn server there are some apps running on nginx…
Wendigo
  • 21
  • 4
2
votes
3 answers

Adding a connection the Virtual Network Gateway

I am trying to create a Site-to-Site (IPsec) connection of Virtual Network gateway in Azure through the portal, and getting an error Failed to create connection 'TestIpSec'. Error: A retryable error occurred. Has anyone encountered the same issue?…
Abdul Wahab Younus
  • 51
  • 1
  • 7
2
votes
0 answers

IKE Authentication Failed while using certificates in Libreswan(Ipsec tunnel)

I am using Libreswan to create IPSec tunnels between VM's. I am using certificates to authenticate(for phase 1 of IPSec). However the IKE tunnel is not getting established and the authentication is failing. I have been trying to establish IPSec…
yatish h r
  • 363
  • 2
  • 12
1 2
3
18 19