Strongswan is an openSource IPsec-based VPN solution
More information: https://www.strongswan.org/
Questions tagged [strongswan]
64 questions
0
votes
0 answers
bash script that checks ping output and run a second command restarting a strongswan service
I'm new to the world of linux and scripting, The OS is Amazon Linux 2 (EC2 instance).
The instance have a Strongswan Site-to-Site VPN connectivity to endpoint IP address 1.1.1.1
The problem is that it disconnects randomly and I have to run the…
0
votes
0 answers
How to insert p12 cert to strongswan profile with java?
if (profile == null) {
File file = new File("cert.p12");
try {
InputStream stream = new FileInputStream(file);
Log.d("VAR", String.valueOf(stream));
} catch (FileNotFoundException e) {
e.printStackTrace();
}
…
notboberyes
- 1
- 1
- 1
0
votes
1 answer
Site to site vpn using Strongswan on AWS 2 EC2 only ping works
Hi i have two AWS account i created 2 ec2 with Ubuntu 20.04 in each account.
In each account one machine is setup as Strongswan and another a private instance
I have completed all the configuration of tunnel security groups and AWS route table, note…
karmendra
- 2,206
- 8
- 31
- 49
0
votes
1 answer
L2TP/IPSec VPN Connection without encryption
My ISP provided us with VPN connection that comes with Gateway IP, Username & Password.
We connect through windows server 2016 fine with no issues
Screenshot: Configuration of the VPN on windows
Now we want to switch to Ubuntu, but we are having…
SL IM
- 11
- 2
0
votes
1 answer
Azure site to site proposals with Strongswan IPSec
I'm here trying to connect a Linux Ubuntu VPC Machine to Azure Cloud network interface, only thing I can't suss out is how to config my IKE and ESP at my end to match the Below -
IKEv2 Encryption | GCMAES256, AES256
IKEv2 Integrity | GCMAES256,…
Jason is a robot
- 25
- 4
0
votes
0 answers
Transit gateway, two vpcs, one with vpn connection. No routing from second vpc to network behind vpn
I have a following scenario:
VPC 1:
10.100.0.0/16 instance with strongswan with ipsec tunnel to 192.168.0.0/24
route to 192.168.0.0/24 through strongswan instance
VPC 2:
172.16.0.0/24
Transit gateway:
VPC 1 attached
VPC 2 attached
Route to VPC1…
Michał Lemke
- 1
- 1
0
votes
0 answers
strongswan ipsec status output meaning
I have the following "ipsec status" output following a strongswan-5.9.5-2ubuntu2 configuration in Ubuntu 2204.
ipsec status
Security Associations (1 up, 1 connecting):
d-test[2]: ESTABLISHED 5 seconds ago,…
Alex B
- 1
0
votes
1 answer
Unable to Setup an site-to-site vpn connection between strongswan and AWS VPN Gateway
I have been trying to setup a site to site vpn connection between aws and my on-prem network. We have a dedicated strongswan vpn gateway in our on-prem network and aws managed vpn gateway on the aws side. Whatever I do I am unable to setup the…
Kunal Malhotra
- 493
- 1
- 5
- 17
0
votes
1 answer
VPNs chain to bypass blocked VPN
I have an L2TP VPN server that is blocked in my country.
Is it possible to configure middle/jump server to make a chain like that:
PC -> VPN1 -> VPN2 -> Internet
VPN1 is hosted by a cloud service (can be any dist).
I don't have access to VPN2, just…
Igor Kandaurov
- 51
- 9
0
votes
1 answer
Strongswan DNS Leak with split-tunnel
I've set up Strongswan VPN with StrongMan(web-interface manager) on AWS.
It works great, my company employees can access contry-restricted site without any issues. But now I need to implement split-tunneling, because we also have to send terabytes…
TigerMax96
- 13
- 1
- 3
0
votes
0 answers
[strongswan][site2site][vpn] s2s is working, but hosts in net A are not able to reach hosts in net B
I established a site to site VPN with strongswan. We have the following setup:
NET A - VPN Gate A - VPN Gate B - NET B
Lets assume:
NET A is 10.2.0.0/24
NET B is 172.18.0.0/24
VPN Gate A is able to reach hosts in NET B.
VPN Gate A has an IP 10.2.0.4…
Simon Hoenscheid
- 1
- 2
0
votes
0 answers
establishing IKE_SA failed, peer not responding - Strongswan with Centos 7 [Possibly duplicate]
I've been on this VPN tunnel for over a week now and keep getting Peer not responding when I bring up the tunnel.
I have Strongswan installed and I have also created 1 tunnel which is working fine and connection established, then I added a second…
Michel
- 1,065
- 1
- 10
- 25
0
votes
0 answers
Azure Point-to-site VPN from Ubuntu
I am trying to follow Configure a Point-to-Site (P2S) VPN on Linux for use with Azure Files and configuration seems to be working without errors. When I try to connect however, it fails.
The error parts that I can find say:
peer didn't accept DH…
tridy
- 1,166
- 1
- 12
- 21
0
votes
1 answer
Enable swanctl plugin of strongswan in yocto
I have compiled my build of strongswan on board successfully with deprecated version of strongswan (using stroke and charon). Now trying to configure it with swanctl and enable charon-systemd plugin but didnt get that tried same things as done for…
shoaib akhtar
- 1
- 2
0
votes
0 answers
IPSec Transport Mode: build a gateway-less VPN
IPSec can be used in tunnel mode to build VPNs which connect a road-warrior to subnet of hosts through a gateway. This typically makes use of internal IP address spaces, making things complicated. Additionally, all traffic goes through a VPN gateway…
alexswerner
- 31
- 2