[strongSwan] Multiple Windows 10 'Road Warriors'
Andreas.Thiele at base-engineering.com
Tue Jun 11 15:20:05 CEST 2019
I have several customers which I want to grant access to different subnets. For these customers I create certificates. So basically many customers can connect and have access to their devices. If a certificate gets lost I can create a new certificate and remove the old one from the allowed connections. This already works but I have a problem:
If a customer is behind a router (FRITZ!BOX 7490 for my test - I guess a very typical situation), only one Windows 10 workstation can connect to the VPN. A second cannot connect even if a different certificate is used. When the first disconnects, the second has to wait for abt. 10 minutes, then it can connect. I am no expert and just a few months ago, I nearly didn't know anything about VPN and not much about network technology at all.
Here is my otherwise working configuration:
# ipsec.conf - strongSwan IPsec configuration file
charondebug="ike 2, cfg 2, chd 2"
leftid="C=DE, O=strongSwan, CN=xxxxxx.com"
# individual customers are added here.
# base engineering
rightid="C=DE, O=strongSwan, CN=CLIENT_XXX"
I am thankful for any help or hint on how to improve things.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Users