Back up to the FireBrick Road Warrior Category Page

Difference between revisions of "FireBrick Road Warrior strongSwan Network Manager"

From AAISP Support Site
Jump to navigation Jump to search
[quality revision][quality revision]
(Created page with "<indicator name="RoadW">link=:Category:FireBrick IPsec Road Warrior|30px|Back up to the FireBrick Road Warrior Category Page</indicator> '''Fir...")
Line 9: Line 9:
==Install Packages==
===Install Packages===
dnf install NetworkManager-strongswan NetworkManager-strongswan-gnome -y
dnf install NetworkManager-strongswan NetworkManager-strongswan-gnome -y
Line 20: Line 20:
##sudo cp /home/user/brick-ca-cert.crt /etc/ssl/certs/
##sudo cp /home/user/brick-ca-cert.crt /etc/ssl/certs/
==Set Up VPN==
===Set Up VPN===
#Open up “Settings” and then select “Network” :
#Open up “Settings” and then select “Network” :
#Click the + button to create a new VPN:
#Click the + button to create a new VPN:

Revision as of 15:42, 31 January 2019

FireBrick acting as the ipsec 'server', and configuring a strongSwan client on Fedora using Network Manager.

This example uses strongSwan on Debian, but the config would suit other flavours once you've installed the package(s).

Install Packages

dnf install NetworkManager-strongswan  NetworkManager-strongswan-gnome -y

Certificate Installation

  1. Go to your VPN end point FireBrick and log in.
  2. Download the certificate from the Firebrick in “DER” format.
  3. Copy or move the cert to /etc/ssl/certs/ :
    1. sudo cp /home/user/brick-ca-cert.crt /etc/ssl/certs/

Set Up VPN

  1. Open up “Settings” and then select “Network” :
  2. Click the + button to create a new VPN:
  3. Select “Ipsec/IKEv2 (strongswan)”
  4. Enter the name of VPN connection
  5. Enter the address of the Firebrick the VPN is going to connect to.
  6. Select “EAP” Authentication
  7. Click the icon and select password option you wish and enter password if needed.
  8. Select required “Options”.
  9. Click Add in the top right

You should now be ready to connect, either click the VPN on in settings or from the network icon in the top right of your screen.

If you require split tunnelling then please select the IPv4 and IPv6 tabs and tick the box for “Use this connection only for resources on its network”

[Category:FireBrick IPsec Road Warrior|Network Manager]]