StrongSwan IPSEC Policy
 

StrongSwan IPSEC Policy

 
Hi,

I need a little help after 3 days of trying, still can’t get the desired effect
I have working IPSEC connection A->B and B->C
How should I set ipsec.conf in SITE B(Ubuntu) to get connection from A->C and C->A using ipsec policy ?

SITE A Mikrotik
local 10.10.0.0/24
Public= 179.x.x.x

SITE B ubuntu serv
local 192.168.0.0/24
Public= 216.x.x.x

SITE C Pfsense
local 192.168.255.0/24
Public=218.x.x.x

conn B->A

type=tunnel
auto=add
keyexchange=ikev2
authby=secret
leftid=216.x.x.x
left=216.x.x.x
leftsubnet=192.168.0.0/24
right=179.x.x.x
rightsubnet=10.10.0.0/24
ike=aes256-sha1-modp2048!
esp=aes256-sha1!
aggressive=no
keyingtries=%forever
ikelifetime=28800s
lifetime=3600s
dpddelay=30s
dpdtimeout=120s

conn B->C

type=tunnel
auto=add
keyexchange=ikev2
authby=secret
leftid=216.x.x.x
left=216.x.x.x
leftsubnet=192.168.0.0/24
right=218.x.x.x
rightsubnet=192.168.255.0/24
ike=aes256-sha1-modp2048!
esp=aes256-sha1!
aggressive=no
keyingtries=%forever
ikelifetime=28800s
lifetime=3600s
dpddelay=30s
dpdtimeout=120s
dpdaction=restart

 

Previous [ubuntu] script help
Next Can I Let Windows 10 Go?
 

About author

You might also like

Ubuntu Dsicussions 0 Comments

Unimplemented function iphlpapi.dll.IcmpParseReplies

Hi! I’m new here so sorry for any errors and stuff, anyway, I’m trying to run a game called Project Diva Arcade Future Tone on my PC, the game has

Ubuntu Dsicussions 0 Comments

Is it possible to programatically simulate clicking on a system notification popup?

Does anyone know if it’s possible to simulate a click on a system notification popup type message? (not sure what the correct terminology is) Like one of the ones that

Ubuntu Dsicussions 0 Comments

restore usb stick to original (erase everything, partitions, EVERYTHING!)

I have a usb stick upon which I put ubuntu 20.04.1 That was a while ago. Now I want to do that again, this time with a newer 20.04.1 I

0 Comments

No Comments Yet!

You can be first to comment this post!

Leave a Reply