Issue #1259
The installation of virtual IP addresses on windows platform is not supported by kernel-iph
Description
Hi,
I need to install strongSwan on Windows 7. Unfortunately, the strongSwan does not support installation of virtual IP addresses on windows platform. It means that windows clients cannot not be used in road warrior scenarios.
I'm wondering if there is another way to workaround this problem?
Related issues
History
#1 Updated by Tobias Feldhaus over 9 years ago
I'm running a setup with Windows 7 and MacOS clients an virtual IPs. What are your build options?
Here is my ipsec.conf:
conn roadwarrior
dpdaction=clear
dpddelay=300s
keyexchange=ikev2
esp=aes256-sha1-modp2048
ike=aes256-sha1-modp2048
ikelifetime=7800
left=84.200.71.2
leftid=@vpn.com
leftsubnet=10.5.0.0/17,172.30.20.0/24
leftcert=cert_2015.pem
leftsendcert=always
right=%any
rightsourceip=10.5.124.0/22
rightauth=eap-mschapv2
rightsendcert=never
eap_identity=%any
rekey=no
reauth=no
auto=add
The clients get an IP from the address range 10.5.124.0/22. The statement you are referring to means that you cannot run strongSwan on a Windows platform as a Server, so as long as you are running the VPN software on a Linux/FreeBSD/Mac Box and serve your Windows clients from there, you are fine.
#2 Updated by Nasser Torabi over 9 years ago
Thank you.
No, my problem refers to kernel-iph plugin. It cannot be used for the installation of virtual IP addresses on Windows clients. My strongSwan VPN server is running on a Linux system and I need to build strongSwan on the Windows clients to be served by the VPN server. But, I'm not going to use VPN build-in software in MS Windows clients.
#3 Updated by Tobias Brunner over 9 years ago
- Is duplicate of Feature #641: kernel-iph virtual IP support and IKE routing lookups ignoring IPsec routes added
#4 Updated by Tobias Brunner over 9 years ago
- Status changed from New to Closed
- Resolution set to Duplicate