Questions tagged [openswan]
The openswan tag has no usage guidance.
130
questions
4
votes
3
answers
42k
views
FortiGate IPsec VPN: Configuring Multiple Phase 2 Connections (Multiple Subnets)
I am trying to make an IPsec connection to a FortiGate router using OpenSwan. The FortiGate sits on two distinct subnets and I need to access both of them. In the FortiGate I have defined one Phase 1 ...
1
vote
0
answers
1k
views
L2TP & IPSec (OpenSwan) on Centos time out when connecting
I'm having big trouble setting up a very simple VPN. Using Centos 6.
My Server Address : 61.34.26.32 (fictive)
Whenever I try to connect (from iPhone5 or MacOS X) i get a connection timeout.
I ...
7
votes
1
answer
4k
views
L2TP over IPSec VPN with OpenSwan and XL2TPD can't connect, timeout on Centos 6
I'm setting up LT2p over IPSec on my Centos 6.3 fresh install.
I have iptables flushed, permit all.
Whenever I try to connect, i get a 'no reply from vpn' and nothi
Here's my ipsec.conf file (...
1
vote
1
answer
2k
views
How do I limit one connection per user for L2TP/IPSec using OpenSwan?
I've successfully set up a VPN server with openswan, pppd, and xl2tpd on Ubuntu.
Everything works great, but I'm having trouble finding out how to only allow one VPN connection per user listed in the ...
0
votes
2
answers
1k
views
ipsec / OpenSwan VPN limit
What is the through put limit of ipsec / OpenSwan?
I am connecting to a Cisco ASA
I am using ipsec version:
Linux Openswan U2.6.37/K3.2.22-35.60.amzn1.x86_64 (netkey)
1
vote
1
answer
5k
views
Centos 6.3 OpenSWAN doesn't find my connection
I've been tearing my hair off in frustration for too long and decided Serverfault might be able to help. Could anyone somehow explain this?
I've reinstalled openswan/ipsec with purge multiple times, ...
2
votes
1
answer
14k
views
Openswan ipsec transport tunnel not going up
On ClusterA and B I have installed the "openswan" package on Debian Squeeze.
ClusterA ip is 172.16.0.107, B is 172.16.0.108
When they ping one another, it does not reach the destination.
/etc/ipsec....
0
votes
1
answer
479
views
one client multi IPSEC server with same configuration
I am able to establish IPSEC connection between one client per server. Actually I can connect multi Ipsec server at the same time. But I have realized that when servers have same xl2tpd.conf file like ...
0
votes
1
answer
461
views
Windows 7 keep internet connection after IPSec established
How I can keep internet connection after establishing IpSec connection to server?
I have followed to following link to establish IpSec server
http://rootmanager.com/ubuntu-ipsec-l2tp-windows-domain-...
1
vote
2
answers
3k
views
xl2tpd[845]: parse_config: line 13: data 'ipsec sared=yes' occurs with no context
When I executed xl2tpd I amhaving following error.
# xl2tpd -D
xl2tpd[845]: parse_config: line 13: data 'ipsec sared=yes' occurs with no context
xl2tpd[845]: init: Unable to load config file
When I ...
8
votes
1
answer
10k
views
Can OpenSWAN replace OpenVPN?
Background
I have a working OpenVPN setup right now, where users can connect the the private network at home with their computers.
However most phones only support IPSec, so I would like to offer ...
3
votes
1
answer
4k
views
IKE Phase 1 Aggressive Mode exchange does not complete
I've configured a 3G IP Gateway of mine to connect using IKE Phase 1 Aggressive Mode with PSK to my openswan installation running on Ubuntu server 12.04. I've configured openswan as follows:
/etc/...
4
votes
2
answers
4k
views
Connecting to IPSec/L2tp with OpenSwan/xl2tpd from Windows7 to Amazon EC2
I am trying to connect from my Windows7 at home to my OpenSwan/xl2tpd setup on an Ubuntu EC2 instance at Amazon.
It is a connection being NATed from both the client and server ends.
I was following ...
2
votes
0
answers
13k
views
ipsec IKE phase 1 failure
I have a wireless gateway that supports site-to-site IPSec. I have configured openswan on Ubuntu Server 12.04 (left side of the tunnel) with the following /etc/ipsec.conf:
version 2.0
config setup
...
0
votes
2
answers
39k
views
OpenSwan IPSec phase #2 complications
Phase #1 (IKE) succeeds without any problems (verified at the target host).
Phase #2 (IPSec), however, is erroneous at some point (apparently due to misconfiguration on localhost).
This should be an ...
2
votes
0
answers
278
views
Sending L2tp/IPsec PSK client packets to OpenSwan server
I'm trying (kind of) to create VPN client, I set my server on Ubuntu using OpenSwan (L2tp/IPsec PSK). What I'm doing right now is sending packets to my server and trying to exchange my keys with the ...
6
votes
1
answer
66k
views
IPsec VPN site-to-site: How should I configure the ipsec.conf files on both sites to get the tunnel up?
What I am trying to do is to create a site-to-site IPsec VPN between my network and my friend's network. We both have a router and two computers on each router, with all computers running Linux. So I ...
0
votes
1
answer
1k
views
Debian 6 and OpenSwan does not work with iPhone as client
I have just installed OpenSwan on Debian 6.0, and configured it according to this tutorial: http://confoundedtech.blogspot.co.uk/2011/08/android-nexus-one-ipsec-psk-vpn-with.html
There are many ...
2
votes
1
answer
3k
views
VPN iptables Forwarding: Net-to-net
I've tried to look elsewhere on this site but I couldn't find anything matching this problem. Right now I have an ipsec tunnel open between our local network and a remote network.
Currently, the ...
4
votes
0
answers
1k
views
How do I configure OpenSwan to allow pure IPsec (not L2TP) connections from an iPhone?
Similar to this question, I want to configure an IPsec server on Linux which will accept connections from the iPhone. However, unlike the other question, I want to be able to test with pre-shared keys ...
1
vote
1
answer
9k
views
Can't get the L2TP IPSEC up and running
i have an Ubuntu 11.10 (oneiric) server running on a ReadyNAS. Im planning to use this to accept ipsec+l2tp connections through a router. However, the connection is failing somewhere half through. ...
0
votes
1
answer
2k
views
Replace a Cisco VPN IPSec concentrator with an Ubuntu-box
Is it possible to replace a Cisco VPN IPSec concentrator with Ubuntu and for instance Strongswan?
1) Do Strongswan implement the same protocolls that Cisco uses?
2) Can we retrieve keys from the ...
0
votes
3
answers
2k
views
Linux routing with gateway in different VLAN
On a hosted environment where we do not have control over the routers all we have is a internal network and a DMZ network and a host in each. In the DMZ is a RHEL server running Openswan and ...
1
vote
1
answer
2k
views
How can I create a host to host IPsec VPN if my server has direct Internet access and no LAN?
I have a Linux server (CentOS 5.5) that has direct access to the Internet with a fixed IP address. That is, the IP address is 200.29.X.Y. The gateway was given by the datacenter (200.29.X.Z) and the ...
0
votes
1
answer
401
views
openswan installation
on a Linux machine with kernel 2.6.32, how to enable klips
i found that for enable klips mus enable
CONFIG_KLIPS_ALG=y
in kernel config.
but patch only available for 2.6.23- and for newer kernels, ...
2
votes
2
answers
3k
views
How do I configure a Linux VPN Client to get into a network through a Fortigate firewall?
In order to connect to my job's VPN, I have been given by the network admin:
a username
a password
a PSK
I run Ubuntu at home. I know Fortigate's VPN should be a vanilla IPSec, so OpenSwan should do ...
0
votes
1
answer
7k
views
Ipsec config with openswan
I try to configure Ipsec on server with openswan as client.
But receive error - possible, it's auth error.
What I wrote wrong in config ?
Thank you for answers.
#1: STATE_MAIN_I2: ...
6
votes
2
answers
7k
views
Issue routing openswan vpn traffic beyond the server
Trying to set up a openswan based server sitting in an Amazon VPC cluster. The goal is to make it so we can VPN into VPC and have our workstations be as if they were on the network, more of a ...
1
vote
1
answer
852
views
iPhone VPN with OpenSwan fails to reconnect
I have managed to configure VPN with iPhone and OpenSWAN on Linux 2.6. Though, when disconnecting the iphone and reconnecting, it times out.
I have found that:
1) no packets are being sent when you ...
0
votes
1
answer
2k
views
VPN from Windows XP to OpenSwan: correct setup?
Main question is what I am doing wrong in my OpenSwan or L2TP client setup?
I am trying to create a Linux OpenSwan VPN connection from Windows XP machine, using preshared key and the builtin Windows ...