[strongSwan] Simple IPsec host-host test

Noel Kuntze noel.kuntze+strongswan-users-ml at thermi.consulting
Fri May 28 16:48:08 CEST 2021


Hello Hoss,

What do you expect to happen?
What exactly did you do up to this point?

Kind regards
Noel

Am 27.05.21 um 19:20 schrieb H Yavari:
> Hi to all,
> 
> I did a simple configuration based on test samples for two ec2 on AWS, but nothing happens between the two machines. What I am missing?
> 
> (10.0.0.30) Sun <=======> Moon (10.0.0.20)
> 
> connections {
> 
>     host-host {
>        remote_addrs = 10.0.0.20
> 
>        local {
>           auth = psk
>           id = sun.strongswan.org
>        }
>        remote {
>           auth = psk
>           id = moon.strongswan.org
>        }
>        children {
>           host-host {
>                  start_action = trap
>           }
>        }
>     }
> }
> secrets {
>     ike-1 {
>        id-moon = moon.strongswan.org
>        id-sun = sun.strongswan.org
>        secret = 0sv+NkxY9LLZvwj4q
>     }
> }
> 
> 
> ------------
> 
> 
> 
> connections {
> 
>     host-host {
>        remote_addrs = 10.0.0.30
> 
>        local {
>           auth = psk
>           id = moon.strongswan.org
>        }
>        remote {
>           auth = psk
>           id = sun.strongswan.org
>        }
>        children {
>           host-host {
>                  start_action = start
>           }
>        }
>     }
> }
> 
> secrets {
>     ike-1 {
>        id-1 = moon.strongswan.org
>        secret = 0x45a30759df97dc26a15b88ff
>     }
>     ike-2 {
>        id-2 = sun.strongswan.org
>        secret = "This is a strong password"
>     }
>     ike-3 {
>        id-3a = moon.strongswan.org
>        id-3b = sun.strongswan.org
>        secret = 0sv+NkxY9LLZvwj4q
>     }
>     ike-4 {
>        secret = 'My "home" is my "castle"!'
>     }
>     ike-5 {
>       id-5 = 10.0.0.20
>       secret = "Andi's home"
>     }
> }
> 
> 
> EC2 : Debian
> Version: 5.7.2
> 
> Thanks.
> 
> BR
> Hoss
> 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20210528/7aaf31d9/attachment.sig>


More information about the Users mailing list