Finally, I've done running an IKEv2 VPN between Ubuntu on my home pc as the client and Centos on my ded server as the server using strongswan 4.6.4, the client is NATed ( router : dsl modem ! ).
Here's the configuration :
server's ipsec.conf :
conn win7
left=SERVER.IP.ADD.RESS
leftcert=server.cert
leftid=@server.domain.com
leftsubnet=0.0.0.0/0
right=%any
rightsourceip=10.10.3.0/24
keyexchange=ikev2
auto=add
leftfirewall=yes
client's ipsec.conf:
conn ike
left=%defaultroute
leftsourceip=%config
leftcert=client.cert
leftid=@client.domain.com
leftfirewall=yes
right=SERVER.IP.ADD.RESS
rightsubnet=0.0.0.0/0
rightid=@server.domain.com
auto=add
Establish the connection using the following command :
ipsec up ike
Subscribe to:
Post Comments (Atom)
How configure reverse proxy for Kodi web interface (chorus2)
This tutorial goes over the steps to configure chorus2 behind nginx reverse proxy so you can remotely control your Kodi setup. First Enabl...
-
This post shows how to configure a mail proxy server to connect clients in an intranet to an external mail server. I will use SSL offloading... -
I use this tutorial to setup RemoSIM.com product for customers. To do: - Add instructions for enabling fail2ban for asterisk - Fix the fre...
-
An updated version of this post is available here . I use this tutorial to setup RemoSIM.com product for customers. RasPBX – Asterisk for ...
What is your ipsec.secrets file? I mean how to include private key of client certificate to strongswan?
ReplyDelete