Skip to main content

Questions tagged [openswan]

The tag has no usage guidance.

Filter by
Sorted by
Tagged with
4 votes
3 answers
42k views

FortiGate IPsec VPN: Configuring Multiple Phase 2 Connections (Multiple Subnets)

I am trying to make an IPsec connection to a FortiGate router using OpenSwan. The FortiGate sits on two distinct subnets and I need to access both of them. In the FortiGate I have defined one Phase 1 ...
FixMaker's user avatar
  • 235
1 vote
0 answers
1k views

L2TP & IPSec (OpenSwan) on Centos time out when connecting

I'm having big trouble setting up a very simple VPN. Using Centos 6. My Server Address : 61.34.26.32 (fictive) Whenever I try to connect (from iPhone5 or MacOS X) i get a connection timeout. I ...
Disco's user avatar
  • 1,451
7 votes
1 answer
4k views

L2TP over IPSec VPN with OpenSwan and XL2TPD can't connect, timeout on Centos 6

I'm setting up LT2p over IPSec on my Centos 6.3 fresh install. I have iptables flushed, permit all. Whenever I try to connect, i get a 'no reply from vpn' and nothi Here's my ipsec.conf file (...
Disco's user avatar
  • 1,451
1 vote
1 answer
2k views

How do I limit one connection per user for L2TP/IPSec using OpenSwan?

I've successfully set up a VPN server with openswan, pppd, and xl2tpd on Ubuntu. Everything works great, but I'm having trouble finding out how to only allow one VPN connection per user listed in the ...
Han's user avatar
  • 131
0 votes
2 answers
1k views

ipsec / OpenSwan VPN limit

What is the through put limit of ipsec / OpenSwan? I am connecting to a Cisco ASA I am using ipsec version: Linux Openswan U2.6.37/K3.2.22-35.60.amzn1.x86_64 (netkey)
Robert's user avatar
  • 91
1 vote
1 answer
5k views

Centos 6.3 OpenSWAN doesn't find my connection

I've been tearing my hair off in frustration for too long and decided Serverfault might be able to help. Could anyone somehow explain this? I've reinstalled openswan/ipsec with purge multiple times, ...
Lars's user avatar
  • 578
2 votes
1 answer
14k views

Openswan ipsec transport tunnel not going up

On ClusterA and B I have installed the "openswan" package on Debian Squeeze. ClusterA ip is 172.16.0.107, B is 172.16.0.108 When they ping one another, it does not reach the destination. /etc/ipsec....
gparent's user avatar
  • 3,632
0 votes
1 answer
479 views

one client multi IPSEC server with same configuration

I am able to establish IPSEC connection between one client per server. Actually I can connect multi Ipsec server at the same time. But I have realized that when servers have same xl2tpd.conf file like ...
Ahmet Karakaya's user avatar
0 votes
1 answer
461 views

Windows 7 keep internet connection after IPSec established

How I can keep internet connection after establishing IpSec connection to server? I have followed to following link to establish IpSec server http://rootmanager.com/ubuntu-ipsec-l2tp-windows-domain-...
Ahmet Karakaya's user avatar
1 vote
2 answers
3k views

xl2tpd[845]: parse_config: line 13: data 'ipsec sared=yes' occurs with no context

When I executed xl2tpd I amhaving following error. # xl2tpd -D xl2tpd[845]: parse_config: line 13: data 'ipsec sared=yes' occurs with no context xl2tpd[845]: init: Unable to load config file When I ...
Ahmet Karakaya's user avatar
8 votes
1 answer
10k views

Can OpenSWAN replace OpenVPN?

Background I have a working OpenVPN setup right now, where users can connect the the private network at home with their computers. However most phones only support IPSec, so I would like to offer ...
Sandra's user avatar
  • 10.6k
3 votes
1 answer
4k views

IKE Phase 1 Aggressive Mode exchange does not complete

I've configured a 3G IP Gateway of mine to connect using IKE Phase 1 Aggressive Mode with PSK to my openswan installation running on Ubuntu server 12.04. I've configured openswan as follows: /etc/...
Isaac Sutherland's user avatar
4 votes
2 answers
4k views

Connecting to IPSec/L2tp with OpenSwan/xl2tpd from Windows7 to Amazon EC2

I am trying to connect from my Windows7 at home to my OpenSwan/xl2tpd setup on an Ubuntu EC2 instance at Amazon. It is a connection being NATed from both the client and server ends. I was following ...
Noam Singer's user avatar
2 votes
0 answers
13k views

ipsec IKE phase 1 failure

I have a wireless gateway that supports site-to-site IPSec. I have configured openswan on Ubuntu Server 12.04 (left side of the tunnel) with the following /etc/ipsec.conf: version 2.0 config setup ...
Isaac Sutherland's user avatar
0 votes
2 answers
39k views

OpenSwan IPSec phase #2 complications

Phase #1 (IKE) succeeds without any problems (verified at the target host). Phase #2 (IPSec), however, is erroneous at some point (apparently due to misconfiguration on localhost). This should be an ...
XXL's user avatar
  • 125
2 votes
0 answers
278 views

Sending L2tp/IPsec PSK client packets to OpenSwan server

I'm trying (kind of) to create VPN client, I set my server on Ubuntu using OpenSwan (L2tp/IPsec PSK). What I'm doing right now is sending packets to my server and trying to exchange my keys with the ...
Stigi's user avatar
  • 121
6 votes
1 answer
66k views

IPsec VPN site-to-site: How should I configure the ipsec.conf files on both sites to get the tunnel up?

What I am trying to do is to create a site-to-site IPsec VPN between my network and my friend's network. We both have a router and two computers on each router, with all computers running Linux. So I ...
Deneb's user avatar
  • 107
0 votes
1 answer
1k views

Debian 6 and OpenSwan does not work with iPhone as client

I have just installed OpenSwan on Debian 6.0, and configured it according to this tutorial: http://confoundedtech.blogspot.co.uk/2011/08/android-nexus-one-ipsec-psk-vpn-with.html There are many ...
mahonya's user avatar
  • 113
2 votes
1 answer
3k views

VPN iptables Forwarding: Net-to-net

I've tried to look elsewhere on this site but I couldn't find anything matching this problem. Right now I have an ipsec tunnel open between our local network and a remote network. Currently, the ...
Mike Holler's user avatar
4 votes
0 answers
1k views

How do I configure OpenSwan to allow pure IPsec (not L2TP) connections from an iPhone?

Similar to this question, I want to configure an IPsec server on Linux which will accept connections from the iPhone. However, unlike the other question, I want to be able to test with pre-shared keys ...
mpontillo's user avatar
  • 924
1 vote
1 answer
9k views

Can't get the L2TP IPSEC up and running

i have an Ubuntu 11.10 (oneiric) server running on a ReadyNAS. Im planning to use this to accept ipsec+l2tp connections through a router. However, the connection is failing somewhere half through. ...
Maciej Swic's user avatar
0 votes
1 answer
2k views

Replace a Cisco VPN IPSec concentrator with an Ubuntu-box

Is it possible to replace a Cisco VPN IPSec concentrator with Ubuntu and for instance Strongswan? 1) Do Strongswan implement the same protocolls that Cisco uses? 2) Can we retrieve keys from the ...
Anders Wallenquist's user avatar
0 votes
3 answers
2k views

Linux routing with gateway in different VLAN

On a hosted environment where we do not have control over the routers all we have is a internal network and a DMZ network and a host in each. In the DMZ is a RHEL server running Openswan and ...
gdurham's user avatar
  • 879
1 vote
1 answer
2k views

How can I create a host to host IPsec VPN if my server has direct Internet access and no LAN?

I have a Linux server (CentOS 5.5) that has direct access to the Internet with a fixed IP address. That is, the IP address is 200.29.X.Y. The gateway was given by the datacenter (200.29.X.Z) and the ...
juakonn's user avatar
  • 11
0 votes
1 answer
401 views

openswan installation

on a Linux machine with kernel 2.6.32, how to enable klips i found that for enable klips mus enable CONFIG_KLIPS_ALG=y in kernel config. but patch only available for 2.6.23- and for newer kernels, ...
hamedsh's user avatar
  • 399
2 votes
2 answers
3k views

How do I configure a Linux VPN Client to get into a network through a Fortigate firewall?

In order to connect to my job's VPN, I have been given by the network admin: a username a password a PSK I run Ubuntu at home. I know Fortigate's VPN should be a vanilla IPSec, so OpenSwan should do ...
GomoX's user avatar
  • 826
0 votes
1 answer
7k views

Ipsec config with openswan

I try to configure Ipsec on server with openswan as client. But receive error - possible, it's auth error. What I wrote wrong in config ? Thank you for answers. #1: STATE_MAIN_I2: ...
user90696's user avatar
6 votes
2 answers
7k views

Issue routing openswan vpn traffic beyond the server

Trying to set up a openswan based server sitting in an Amazon VPC cluster. The goal is to make it so we can VPN into VPC and have our workstations be as if they were on the network, more of a ...
Ken Robertson's user avatar
1 vote
1 answer
852 views

iPhone VPN with OpenSwan fails to reconnect

I have managed to configure VPN with iPhone and OpenSWAN on Linux 2.6. Though, when disconnecting the iphone and reconnecting, it times out. I have found that: 1) no packets are being sent when you ...
gilm's user avatar
  • 143
0 votes
1 answer
2k views

VPN from Windows XP to OpenSwan: correct setup?

Main question is what I am doing wrong in my OpenSwan or L2TP client setup? I am trying to create a Linux OpenSwan VPN connection from Windows XP machine, using preshared key and the builtin Windows ...
Gnudiff's user avatar
  • 533

1 2
3