Hi Aanand,
> I would like to know if some or all of the plugins defined here - are
> available on the Strongswan client too.
The strongSwan IKE daemon may be used as client or server or both,
depending on the configuration. It does not enforce a clear distinction
(excluding specific client imple
Thanks Tobias. This makes sense.
In case of the Android App or the Network Manager - does all this mean that if
I were to add additional EAP plugins they will not show up in the UI and hence
users dialing through the UI wouldn't be able to see and use them? But on Linux
these additional EAP meth
Hi Aanand,
> In case of the Android App or the Network Manager - does all this mean
> that if I were to add additional EAP plugins they will not show up in
> the UI and hence users dialing through the UI wouldn't be able to see
> and use them?
Most EAP methods can't be selected explicitly in the
Hi,
Looking for some help setting up my 1st strong swan vpn server and having
some IPTABLES lack of knowledge issues.
I've an Ubuntu 16.04 server with strongswan 5.3.5 packages installed. The
plan is to have external user to connect to the server via a public IP
address from outside the universit
On 02.03.2017 15:22, Alex Sharaz wrote:
> Hi,
> Looking for some help setting up my 1st strong swan vpn server and having
> some IPTABLES lack of knowledge issues.
>
> I've an Ubuntu 16.04 server with strongswan 5.3.5 packages installed. The
> plan is to have external user to connect to the ser
Charon supports traffic selector narrowing. It does what the name implies
(narrows the locally configured TS and the remote TS down to a common
TS, if possible. Otherwise, reject the client and send it an error.
However, you need to make sure that you can actually configure the client
to send a na
You did a couple of things wrong.
I'm going to start with the outer most layers and then work towards the actual
routing in the GRE tunnel.
1. Your SA only needs to protect GRE traffic and you don't need to specify any
of the IPs or subnets
in the GRE tunnel in the IPsec policies. It is actually
Fix the TS to include the other laptop's virtual IP in the remote part of the
TS (perspective of the laptops).
On 27.02.2017 10:42, Tu, Robin wrote:
> Hi, guys,
>
>
>
> I have 2 laptop established ikev2 vpn to gateway moon.
>
> Laptop1’s IP is 10.70.1.108 and Laptop2’s IP is virtual IP 1
