Unix and Linux Stack Exchange
Unix and Linux Stack Exchange

Questions tagged [libreswan]

6 questions
2
votes
1 answer

What does "virtual_private" Openswan configuration option do under the hood?

As I understand, virtual_private configuration option declares which subnets should be allowed through the tunnel and which should be excluded. For example if I have following…
Martin
  • 7,284
  • 40
  • 125
  • 208
1
vote
0 answers

Specify multiple right subnets on libreswan ipsec vpn using ikev1

I want to connect to a ipsec vpn server, and it allows me to connect to different ips (not a ip range), lets say y.y.y.1, y.y.y.2, y.y.y.3, y.y.y.4. I have the following config: conn toing-to-toing type=tunnel authby=secret …
toing_toing
  • 111
  • 5
1
vote
0 answers

How to configure Libreswan IPsec for multiple connections?

I'm trying to set up Xauth IPsec on my linux machine. This IPsec server is behind a NAT. My goal is to have two types of users that can authenticate with a password and a PSK. The first group (regular user) should be able to access only a certain IP…
j3141592653589793238
  • 121
  • 3
1
vote
0 answers

Run script when interface change it's status

I need static route when interface is up and delete this route when it goes down, but I have no interface config file to describe shell-command in it. I have IPSec tunnel created with LibreSwan and tunnel interface vti0 that created by ipsec daemon.…
Sergio
  • 121
  • 6
1
vote
0 answers

Is there a way to configure Libreswan to opportunistically create an IPSec SA with a remote host by preloading certificates or keys?

Is there a way to configure Libreswan to opportunistically create an IPSec SA with a remote host by preloading certificates or keys from hosts we trust? I'm looking for Libreswan configuration that would allow a group of RHEL, CentOS, or Fedora…
Liczyrzepa
  • 654
  • 5
  • 20
0
votes
0 answers

change default route for VPN users

I have a linux (currently centos 8 but I can change it to anything) server running as l2tp VPN Server which has two network interfaces as below: NIC1: 192.168.1.4/24 NIC2: 192.168.3.2/24 Default gateway for server is 192.168.1.1 but I want to set…
H So
  • 1