All Questions
7
questions
0
votes
1
answer
3k
views
How can I create an IPsec tunnel between a FritzBox and a pfsense, without using Aggressive Mode?
I've successfully created an IPSEC Tunnel between my local FritzBox 7590 and my office, which is running a pfsense hardware firewall (APU2) with pfsense 2.4.5-RELEASE-p1 and coreboot firmware v4.11.0....
- 151
1
vote
0
answers
35
views
Is it possible to skip main mode for IPSec communication on Windows?
On Linux, after registered several SAs (Security Associations) between a pair of Linux host, I can create communication between those two Linux hosts, i.e, communicate with ESP packets.
But on ...
- 111
0
votes
1
answer
3k
views
IKEV2 tunnel not getting created
Getting bellow error message while trying to ping.
Feb 12 17:51:11.383 IST: IKEv2-INTERNAL:Processing an item off the pak
queue
Feb 12 17:51:11.384 IST: IKEv2-INTERNAL:Couldn't find matching ...
0
votes
1
answer
2k
views
Required ICMP types for IPSec tunnel?
I have IPSec tunnel set up between 2 routers. It used to work fine, however recently I hardened policy in IDS and I started getting alerts about ICMP type 11 code 1 being sent from one router to ...
- 820
0
votes
1
answer
84
views
How does IPsec operate in NAT environment?
I know that if you mess with IPsec header it will drop the packet and NAT is build exactly for that. How do they deploy IPsec where NAT is also needed.
- 189
0
votes
1
answer
327
views
Can I run a VPN server with certificates only, and no password/pre-shared keys?
I've seen several writeups around discussing VPN server configuration. In all of them, there are 2 or 3 pre-shared keys / passwords used at various levels of the tunnel -- one for IPSec, one for L2TP,...
- 533
1
vote
1
answer
2k
views
Private IP address over IPSEC tunnel
I have two dedicated servers that I have configured to require AH and ESP between their (public) IP addresses and using racoon I've set up isakmp. The IPsec tunnel between them is working well - I ...
- 121