質問編集履歴
2
strongswan の設定を追加
test
CHANGED
|
File without changes
|
test
CHANGED
|
@@ -129,3 +129,61 @@
|
|
|
129
129
|
###補足情報(言語/FW/ツール等のバージョンなど)
|
|
130
130
|
|
|
131
131
|
Windowsを使用して、VPNサーバーに接続できること自体は確認しています。
|
|
132
|
+
|
|
133
|
+
|
|
134
|
+
|
|
135
|
+
###【10/17 追記】strongswanの設定と通信状態
|
|
136
|
+
|
|
137
|
+
strongswanにて「strongswan status」を実行した際の動作は以下の通りです。
|
|
138
|
+
|
|
139
|
+
```
|
|
140
|
+
|
|
141
|
+
# strongswan status
|
|
142
|
+
|
|
143
|
+
Security Associations(1 up, 0 connecting)
|
|
144
|
+
|
|
145
|
+
VPN[2]: ESTABLISHED 1 hours ago, 192.168.10.6[192.168.119.129]...xxx.xxx.xxx.xxx[192.168.100.1]
|
|
146
|
+
|
|
147
|
+
```
|
|
148
|
+
|
|
149
|
+
|
|
150
|
+
|
|
151
|
+
strongswanの設定は以下の通りです。
|
|
152
|
+
|
|
153
|
+
/etc/strongswan/ipsec.conf
|
|
154
|
+
|
|
155
|
+
```
|
|
156
|
+
|
|
157
|
+
conn VPN
|
|
158
|
+
|
|
159
|
+
keyexchange=ikev1
|
|
160
|
+
|
|
161
|
+
ikelifetime=1440m
|
|
162
|
+
|
|
163
|
+
authby=psk
|
|
164
|
+
|
|
165
|
+
left=%any
|
|
166
|
+
|
|
167
|
+
leftsubnet=192.168.10.0/24
|
|
168
|
+
|
|
169
|
+
type=tunnel
|
|
170
|
+
|
|
171
|
+
right=xxx.xxx.xxx.xxx
|
|
172
|
+
|
|
173
|
+
rightid=192.168.100.1
|
|
174
|
+
|
|
175
|
+
rightsubnet=192.168.100.0/24
|
|
176
|
+
|
|
177
|
+
ike=aes-sha1-modp1024
|
|
178
|
+
|
|
179
|
+
auto=start
|
|
180
|
+
|
|
181
|
+
```
|
|
182
|
+
|
|
183
|
+
/etc/strongswan/ipsec.secrets
|
|
184
|
+
|
|
185
|
+
```ls
|
|
186
|
+
|
|
187
|
+
%any : PSK "abcdefghijklmn"
|
|
188
|
+
|
|
189
|
+
```
|
1
誤字修正&未記入部分追加
test
CHANGED
|
File without changes
|
test
CHANGED
|
@@ -58,7 +58,21 @@
|
|
|
58
58
|
|
|
59
59
|
```
|
|
60
60
|
|
|
61
|
+
[global]
|
|
62
|
+
|
|
63
|
+
auth file = /etc/ppp/chap-secrets
|
|
64
|
+
|
|
65
|
+
debug avp = yes
|
|
66
|
+
|
|
67
|
+
debug network = yes
|
|
68
|
+
|
|
69
|
+
debug packet = yes
|
|
70
|
+
|
|
71
|
+
debug state = yes
|
|
72
|
+
|
|
73
|
+
debug tunnel = yes
|
|
74
|
+
|
|
61
|
-
[lac
|
|
75
|
+
[lac vpn]
|
|
62
76
|
|
|
63
77
|
lns=xxx.xxx.xxx.xxx
|
|
64
78
|
|