IPSec VPN Working for OS X Mavericks

In iOS IPSec VPN Server on Ubuntu, I host a VPN on Ubuntu 13.10 based on StrongSwan 4.x, working for iOS, but not for OSX. Then I upgraded to Ubuntu 14.04, which has StrongSwan upgraded to 5.x, error like:

To fix this, install all strongswan’s plugins by:

And make some changes to configurations: … Continue reading “IPSec VPN Working for OS X Mavericks”

iOS IPSec VPN Server on Ubuntu

I Google-ed a lot configuring IPSec VPN for iOS with OpenSwan, nothing useful but Iphone/Ipad/Mac OSX IPSEC VPN with Strongswan 5 on Centos/RHEL 6 which is on RHEL/CentOS and with strongswan found. I tried to configure openswan like strong swan, failed. StrongSwan‘s official wiki helps a lot: http://wiki.strongswan.org/projects/strongswan/wiki/IOS_(Apple)/23 iOS 4 and newer supports native IPsec … Continue reading “iOS IPSec VPN Server on Ubuntu”

L2TP Remote Access Server on UBNT EdgeRouter

EdgeRouter Lite with Firmware 1.9.0 L2TP PSK Mode. WAN interface: eth1 LAN IP: 192.168.3.1 VPN Subnets: 192.168.47.1-192.168.47.99 Run commands below in ‘configure mode’. 1 Configure IPSec

2 Configure L2TP

3 Configure DNS Make sure you have following lines, otherwise you can get DNS resolved.

Incoming search terms:edgerouter lite l2tpLink to this post!

EdgeOS PPTP VPN客户端配置

背景及目标 买了个Ubnt EdgeRouter Lite,应同事的需求,研究配置自动翻墙。 考虑过之前配置的各种VPN:PPTP、L2TP、IPSec、AnyConnect/OpenConnect。目前搞定的只有PPTP。 本次配置使用远程PPTP Server,只考虑Google、Twitter和Facebook的自动翻墙,其他可以参照思路自己加路由和NAT。 环境 假设网络已经配置好,eth0为内网口,eth1为外网口。 Incoming search terms:edgeos ipsecedgerouter pptplinux墙翻自动ubnt 翻墙自动翻墙Link to this post!

OpenConnect Public Key Authentication

Here are old articles about OpenConnect, the open source AnyConnect server: OpenConnect on Ubuntu Open Connect Server Configuration (Working for iOS) Cisco AnyConnect Client for OS X/Windows/Linux (Version 3.1.05160) This time, OCServ 0.80 on Ubuntu 14.04. And still doesn’t work for OS X. I was using password based authentication, but clients on iOS can not … Continue reading “OpenConnect Public Key Authentication”