Hi,
I am currently trying around with getting strongswan HA to work on exoscale.
Exoscale has no ClusterIP, but a so called "elastic ip" which I can move freely
among my instances. I came up with a "proof of concept" on how this could work.
But I am unsure if my assumption about how strongswan H
Hey,
Here [1] it is described how to create a HA Address pool in strongswan.
The example shows cidre notation, and when I try to use a address range:
pools {
vpnclients=192.168.1.10-192.168.1.100
}
strongswan does not accept is.
Is there a way do specify address ranges for these po
Hi,
I am setting up strongswan in an exoscale account und try to make it as high
available as possible.
Exoscale does not support ClusterIP but has a feature called "Elastic IP". An
elastic IP can be assigned and removed from any host via a command line tool.
Can I use this in a strongswan act
18 8:44 PM, Nathan Hüsken wrote:
> Hi,
>
> OK, I thought I looked through logs for all errors. But you are correct, I
> get:
>
> unable to bind DHCP send socket: Permission denied
>
> I get this error also if dnsmasq is stopped. And I can bind to udp port 67
> and 68 usi
problem, but a permission problem.
I find that kind if irritating. After all, strongswan can also bind port 500.
Any ideas, how I could fix this?
Thanks!
Nathan
--
Dr. Nathan Hüsken
Cloud Developer
nat...@wintercloud.de
+49 151 703 478 84
wintercloud GmbH & Co. KG
Emil-Maier-Str. 16
6
Hi,
I have installed strongswan and dnsmasq (which also is used as a dhcp server)
on the same host. I want to give remote computers ips through dnsmasq, so I
set:
righsourceip=%dhcp
Now strongswan seemed to have problems reaching the dhcp server. So I set
interface=eth1
in /etc/str
Hey,
OK, in the end my mistake was, that I believed the pkcs#11 Plugin was enabled
in charon-nm, as it was only enabled in strongswan itself. It works now.
Thanks for pointing that out and thanks for all the help!
Nathan
--
Dr. Nathan Hüsken
Cloud Developer
nat...@wintercloud.de
+49 151
not usable certificates on the
smartcard).
If charon-nm doest not support reading the private key from the smartcard, what
is the point of this option?
What am I missing here?
Many thanks!
Nathan
--
Dr. Nathan Hüsken
Cloud Developer
nat...@wintercloud.de
+49 151 703 478 84
wintercloud GmbH &
st,
Nathan
--
Dr. Nathan Hüsken
Cloud Developer
nat...@wintercloud.de
+49 151 703 478 84
wintercloud GmbH & Co. KG
Emil-Maier-Str. 16
69115 Heidelberg
wintercloud.de
Sitz der Kommanditgesellschaft: Heidelberg, Registernummer der
Kommanditgesellschaft im Handelsregister: AG Mannh
ttps://wiki.strongswan.org/projects/strongswan/wiki/SmartCards
--
Dr. Nathan Hüsken
Cloud Developer
nat...@wintercloud.de
+49 151 703 478 84
wintercloud GmbH & Co. KG
Emil-Maier-Str. 16
69115 Heidelberg
wintercloud.de
Sitz der Kommanditgesellschaft: Heidelberg, Registernummer der
Kom
ot work?
Nathan
[1]
https://wiki.strongswan.org/projects/strongswan/wiki/NetworkManager#Smart-card-requirements
--
Dr. Nathan Hüsken
Cloud Developer
nat...@wintercloud.de
+49 151 703 478 84
wintercloud GmbH & Co. KG
Emil-Maier-Str. 16
69115 Heidelberg
wintercloud.de
Sitz der Kommandi
Hello Everyone,
I am new on this list, so hi :).
I have trouble configuring a connection to my strongswan server using a
smartcard and I need some help debugging the problem.
I try to configure it via network-manager (with the module charon-nm). Here is
the situation:
* If I use private key
12 matches
Mail list logo