Configuration help - conversion from charon-cmd to ipsec.conf #282
Unanswered
jdpayne1969
asked this question in
Q&A
Replies: 1 comment 2 replies
-
just specify the password as EAP type secret with your eap_id (seems to be same as vpn_id) and the password as the secret value. |
Beta Was this translation helpful? Give feedback.
2 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hi,
I have a successful VPN setup on a VPS. I can connect my macOS and iOS devices successfully. I can also connect with another linux device with the charon-cmd. My issue is that the charon-cmd prompts for the password and I cannot script this to start on boot. I'm sure I should be able to do this with the normal strongswan systemctl and ipsec.conf file. The problem is I have not for the life of me got the correct ipsec.conf file. I need to map the following charon-cmd to an ipsec.conf file:
charon-cmd --host my_server_public_ip --identity vpn_id --cert /etc/ipsec.d/cacerts/server-root-ca.pem --profile ikev2-eap --esp-proposal aes256-sha2_256
Another solution would be how to pass the password to the charon-cmd via script so my connection can start on boot.
Any help would be great. I know this should be easy, but I'm struggling.
Thanks in advance,
Jeff
Beta Was this translation helpful? Give feedback.
All reactions