Marown/setup-ipsec-vpn
1
0
Fork 0
mirror of https://github.com/hwdsl2/setup-ipsec-vpn.git synced 2024-06-30 17:45:43 +02:00
Code Issues Packages Projects Releases Wiki Activity
830 Commits 1 Branch 0 Tags 20 MiB
c91270a18c
Commit Graph

247 Commits

Author SHA1 Message Date
hwdsl2
da7697a5b0 Cleanup 
- Update scripts to use bash instead of sh
- Update docs
 2021-08-27 23:35:31 -05:00
hwdsl2
742161124c Update docs 2021-08-15 11:38:27 -05:00
hwdsl2
f0b0b9213b Update docs 2021-08-15 00:46:41 -05:00
hwdsl2
6daacff466 Cleanup 2021-08-07 16:12:26 -05:00
hwdsl2
6aa15b8a21 Update docs 2021-07-31 15:32:02 -05:00
hwdsl2
c6cfd1fe49 Update docs 2021-07-28 23:33:29 -05:00
hwdsl2
88ab115874 Update docs 2021-07-27 09:53:25 -05:00
hwdsl2
f18c3c0207 Update docs 2021-07-25 20:55:54 -05:00
hwdsl2
02bdbeb9a2 Update docs 2021-07-24 16:26:20 -05:00
hwdsl2
8db2a9ebd8 Update docs 2021-07-23 01:25:25 -05:00
hwdsl2
b59eb58ac9 Update docs 2021-07-21 01:56:11 -05:00
hwdsl2
02b6d05c82 Update IPTables rules 
- Allow traffic from IKEv2 and IPsec/XAuth ("Cisco IPsec") clients to
  IPsec/L2TP clients. Ref: #983
- Cleanup
- Update docs
 2021-06-20 15:02:33 -05:00
hwdsl2
99dd5702e7 Update docs 2021-06-06 15:27:56 -05:00
hwdsl2
9072c0889c Update docs 2021-06-06 12:04:19 -05:00
hwdsl2
7376fc02d2 Update docs 2021-06-04 17:27:21 -05:00
hwdsl2
e05cdb4b83 Update docs 2021-06-04 14:48:19 -05:00
hwdsl2
d6088751b9 Update docs 2021-06-01 02:31:14 -05:00
hwdsl2
55b468bb1f Update docs 2021-05-24 01:20:32 -05:00
hwdsl2
933114087b Update docs 2021-05-02 00:48:29 -05:00
hwdsl2
ee409250d8 Improve IKEv2 setup 
- Increase RSA key size from the default 2048 bits to 3072 bits
- Use fixed delay between certutil calls, a random delay is not needed
- Update docs
 2021-05-01 14:46:12 -05:00
hwdsl2
21a72d6232 Update docs 2021-04-30 09:42:36 -05:00
hwdsl2
9bd716dda8 Update docs 2021-04-26 22:59:30 -05:00
hwdsl2
5d5bcf6857 Update IKEv2 docs 2021-04-24 22:56:51 -05:00
hwdsl2
740f6d92d0 Update docs 2021-04-24 16:16:29 -05:00
hwdsl2
dc1bcb21f9 Update docs 2021-04-18 14:28:00 -05:00
hwdsl2
6c5e29351f Optimize images 2021-04-16 22:27:49 -05:00
hwdsl2
55aac9ad37 Update IKEv2 docs 2021-04-11 15:44:03 -05:00
hwdsl2
848ff7ba0a Update IKEv2 docs 2021-04-10 16:25:13 -05:00
hwdsl2
d76ded2c52 Update docs 2021-03-31 00:58:06 -05:00
hwdsl2
f2872197b1 Update docs 2021-03-29 15:07:41 -05:00
hwdsl2
356a5bd130 Update docs 2021-03-29 15:05:45 -05:00
hwdsl2
4d371e360e Update docs 2021-03-29 00:09:15 -05:00
hwdsl2
191e0af9ff Update docs 2021-03-27 22:59:59 -05:00
hwdsl2
9437be8553 Update docs 2021-03-27 14:51:18 -05:00
hwdsl2
de2acaabc5 Update IKEv2 docs 
- Add Linux instructions for IKEv2
 2021-03-27 00:48:09 -05:00
hwdsl2
bf0f557416 Update docs 2021-03-21 14:48:44 -05:00
hwdsl2
ff38c87632 Update docs 2021-03-20 00:06:31 -05:00
hwdsl2
8fa3bfac80 Cleanup 2021-03-07 00:12:46 -06:00
hwdsl2
1abcd704be Update IKEv2 config 
- Use the AES_GCM128 cipher for improved performance
  Ref: https://libreswan.org/wiki/Benchmarking_and_Performance_testing
- Update docs
 2021-03-06 14:07:07 -06:00
hwdsl2
11f8502e3a Improve IKEv2 setup 
- Use default key size (2048 bits) when generating key pairs using
  certutil. This significantly reduces IKEv2 setup time on servers
  with less powerful CPUs, such as Raspberry Pis, while still providing
  sufficient security.
- Update docs
 2021-03-05 21:33:41 -06:00
hwdsl2
e7e9bf2dc0 Update docs 2021-03-01 10:12:46 -06:00
hwdsl2
ac86c8831c Update docs 
- Add new section for advanced usage
- Clean up important notes section
- Update IKEv2 docs
 2021-02-28 15:54:58 -06:00
hwdsl2
78a9f608e5 Update IKEv2 docs 
- Update Windows IKEv2 client instructions. Ref: #940.
 2021-02-21 14:57:37 -06:00
hwdsl2
12fdc8c11d Update docs 2021-02-10 10:26:18 -06:00
hwdsl2
ad1c635ca3 Update IKEv2 docs 
- Android 6.0 and older devices require additional instructions
  for IKEv2. Ref: #930
 2021-02-06 15:18:01 -06:00
hwdsl2
97624bf292 Update docs 2021-02-04 21:43:03 -06:00
hwdsl2
1327f9123e Update docs 2021-02-02 10:45:05 -06:00
hwdsl2
954b2acb7c Fix for IKEv2 
- Fix an issue where multiple IKEv2 clients behind the same NAT cannot
  connect simultaneously to the VPN server. Note that before this fix,
  this issue only occurs when using an IP address (instead of a DNS name)
  for IKEv2 for the VPN server.
- This issue is found to be related to Libreswan's matching of local IDs
  when checking connections. A local ID with '@' prefix has type ID_FQDN,
  which does not match the ID_IPV4_ADDR type that the peer expects. This
  prevents connection switching from working correctly for the scenario
  above. Removing the prefix fixed the issue.
- Fixes #924
 2021-02-01 21:42:31 -06:00
hwdsl2
c6182d76bb Update docs 2021-01-31 00:30:33 -06:00
hwdsl2
f6b8d13b05 Update docs 2021-01-30 14:31:37 -06:00