FireBrick to Openswan Strongswan IPsec (Howto): Difference between revisions

← Older edit

FireBrick to Openswan Strongswan IPsec (Howto) (view source)

Revision as of 00:31, 4 July 2022

10 bytes added , 4 July 2022

→‎Linux (CentOS Openswan) Example Using IKE2 and Preshared keys: formatting

Reedy

editor

699

edits

Revision as of 23:29, 3 July 2022 (view source) Reedy (talk \| contribs) (internal to local) ← Older edit		Latest revision as of 00:31, 4 July 2022 (view source) Reedy (talk \| contribs) (→‎Linux (CentOS Openswan) Example Using IKE2 and Preshared keys: formatting)
(3 intermediate revisions by the same user not shown)
<indicator name="Tunnels">[[File:Menu-IPsec.svg\|link=:Category:FireBrick IPsec\|30px\|Back up to the FireBrick IPsec Tunnels Category Page]]</indicator> AlsoSee ~~see~~also: [[FireBrick Road Warrior strongSwan]] =Linux (CentOS Openswan) Example Using IKE2 and Preshared keys= (strongswan is much nicer, but not in yum on centos5. On centos6, use strongswan) In <tt>/etc/ipsec.conf</tt> uncomment include /etc/ipsec.d/.conf Put following two files in <tt>/etc/ipsec.d/ </tt>: file: myFireBrick.conf: Put the following in the FB at the other end: <syntaxhighlight lang="xml"> <connection name="IPSec" peer-ips="CentOS.IP.Address" auth-method="Secret" secret="YourSecretHere" local-ip="FireBrick.LAN.IP.Address~~/24~~" routes="CentOS.IP.Address" log="default"/> </syntaxhighlight> file: /etc/ipsec.conf <syntaxhighlight lang="bash"> conn myFireBrick authby=secret auto=start Put the following in the FB at the other end: <syntaxhighlight lang="xml"> <connection name="IPSecTostrongSwan" peer-ips="strongSwan.IP" auth-method="Secret" secret="YourSecretHere" local-ip="FireBrick.LAN.IP.Address~~/24~~" routes="strongSwan.IP" log="default"/> </syntaxhighlight>