FireBrick Road Warrior strongSwan Network Manager: Difference between revisions

← Older edit Newer edit →

Content deleted Content added

Inline

@@ Line 2: / Line 2: @@
 '''FireBrick acting as the ipsec 'server', and configuring a strongSwan client on Fedora using Network Manager.'''
@@ Line 7: / Line 8: @@
 *Also see: [[FireBrick_Road_Warrior_strongSwan]] (setting up via non-network manager
 *Also see: [[FireBrick to Openswan Strongswan IPsec (Howto)]]
+*Also see the official StrongSwan network manager page: https://wiki.strongswan.org/projects/strongswan/wiki/NetworkManager
 ===Install Packages===
  dnf install NetworkManager-strongswan  NetworkManager-strongswan-gnome -y
+or in ubuntu:
+ apt install network-manager-strongswan
-===Certificate Installation===
+===(optional) Certificate Installation on the client===
 If you're using self-signed certs, generated by the FireBrick then do the following, otherwise (eg if you are using the easily installed Let's Encrypt cert on the FireBrick then you can skip this stage)
@@ Line 22: / Line 25: @@
 ##sudo cp /home/user/brick-ca-cert.crt /etc/ssl/certs/
-Note: When doing this with a LetsEncrypt Cert it is the ISRG-Root-X1 cert not the Let'sEncryptAuthorityX3 cert that is needed in /etc/ssl/certs/. This only seems to be for Linux as iOS, OSX, Window 10 and Android-strongswan all work with the Let'sEncryptAuthorityX3 cert.
+Note: When doing this with a LetsEncrypt Cert it is the ISRG-Root-X1.pem cert not the Let'sEncryptAuthorityX3 cert that is needed in /etc/ssl/certs/. This only seems to be for Linux as iOS, OSX, Window 10 and Android-strongswan all work with the Let'sEncryptAuthorityX3 cert. - the ISRG-Root-X1 is usually already installed by the OS.
 ===Set Up VPN===