[strongSwan] Connect to StrongSwan Server via HTTP_PROXY

Noel Kuntze noel.kuntze+strongswan-users-ml at thermi.consulting
Thu Mar 8 11:31:38 CET 2018


Hi,

You can't do that, because IPsec is based on UDP and ESP, not on TCP or HTTP. So of course this doesn't work.

Kind regards

Noel

On 05.03.2018 22:20, Info wrote:
>
> Nah.  IPSec can carry tcp, udp, icmp, etc, but an http proxy can only carry http/tcp.
>
> Idk about a SOCKS proxy though.
>
>
> On 03/05/2018 01:16 PM, Rafael Herrera wrote:
>> Hi,
>>
>>
>> Is it possible to connect a client to StrongSwan/IPSec VPN server through an HTTP Proxy in between the both hosts (client and server)?
>>
>>
>> Please notice that I found that it is possible using OpenVPN <https://openvpn.net/index.php/open-source/documentation/manuals/65-openvpn-20x-manpage.html>:
>>
>> --http-proxy server port [authfile] [auth-method]Connect to remote host through an HTTP proxy at address server and port port. If HTTP Proxy-Authenticate is required, authfile is a file containing a username and password on 2 lines, or "stdin" to prompt from console.
>>
>> auth-method should be one of "none", "basic", or "ntlm".
>>
>>
>> Is there any similar approach that I can use with StrongSwan/IPSec?
>>
>>
>> Thanks,
>> Best Regards.
>> -- 
>> Rafael de Paula Herrera
>

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20180308/05ba0cf0/attachment.sig>


More information about the Users mailing list