Version 26 - History - Windows Suite B Support with IKEv1 - strongSwan

Windows Suite B Support with IKEv1 » History » Version 26

Andreas Steffen, 22.07.2009 22:13
added newline

-Andreas Steffen
+h1. Windows Suite B Support with IKEv1
 Andreas Steffen
-Andreas Steffen
+{{>toc}}
 Andreas Steffen
-Andreas Steffen
+Windows Vista Service Pack 1, Windows Server 2008 and Windows 7 support the Suite B cryptographic algorithms for IPsec defined by "RFC 4869":http://tools.ietf.org/html/rfc4869. For Windows configuration details see http://support.microsoft.com/kb/949856/.
 Andreas Steffen
-Andreas Steffen
+Starting with strongSwan release 4.3.3 the IKEv1 pluto daemon also fully supports the Suite B cryptographic algorithms. This is the reason that we created this HOWTO on Windows Suite B interoperability.
 Andreas Steffen
-Andreas Steffen
+h2. 1 Preparations
 Andreas Steffen
-Andreas Steffen
+h3. 1.1 Import of Windows Machine Certificates
 Andreas Steffen
-Andreas Steffen
+First we import both an ECDSA-256 and an ECDSA-384 machine certificate plus the corresponding private keys and root CA certificate in PKCS#12 format (.p12) into the local computer part of the Windows registry using the Microsoft Management Console *mmc*. The following "step-by-step tutorial":http://wiki.strongswan.org/wiki/strongswan/Win7Certs shows how this is done. If you have been successful then the mmc console display should look like this:
 Andreas Steffen
-Andreas Steffen
+!advfirewall_mmc.png!
 Andreas Steffen
-Andreas Steffen
+Here are some details on the imported ECDSA-256 certificate:
 Andreas Steffen
-Andreas Steffen
+!advfirewall_ecdsa256_cert.png!
 Andreas Steffen
-Andreas Steffen
+and here on the imported ECDSA-384 certificate:
 Andreas Steffen
-Andreas Steffen
+!advfirewall_ecdsa384_cert.png!
 Andreas Steffen
-Andreas Steffen
+h3. 1.2 Import of strongSwan Private Keys
 Andreas Steffen
-Andreas Steffen
+The path to RSA and ECDSA private keys are defined in /etc/ipsec.secrets:
 Andreas Steffen
-Andreas Steffen
+<pre>
-Andreas Steffen
+# /etc/ipsec.secrets - strongSwan IPsec secrets file
 Andreas Steffen
-Andreas Steffen
+: RSA vpnKey.pem
 Andreas Steffen
-Andreas Steffen
+: ECDSA koala_ec256Key.pem
 Andreas Steffen
-Andreas Steffen
+: ECDSA koala_ec384Key.pem
 Andreas Steffen
-Andreas Steffen
+</pre>
 Andreas Steffen
-Andreas Steffen
+h3. 1.3 Windows Main Mode Security Methods
 Andreas Steffen
-Andreas Steffen
+The following command sets the IKEv1 Main Mode security methods globally since the Suite B parameters cannot be set via the graphical advanced firewall interface:
 Andreas Steffen
-Andreas Steffen
+<pre>
-Andreas Steffen
+netsh advfirewall set global mainmode mmsecmethods ecdhp256:aes128-sha256,ecdhp384:aes192-sha384,dhgroup14:aes128-sha1
-Andreas Steffen
+</pre>
 Andreas Steffen
-Andreas Steffen
+The currently configured algorithms can be checked using the command:
 Andreas Steffen
-Andreas Steffen
+<pre>
-Andreas Steffen
+netsh advfirewall show global
 Andreas Steffen
-Andreas Steffen
+Main Mode:
-Andreas Steffen
+KeyLifetime  480min,0sess
-Andreas Steffen
+SecMethods   ECDHP256-AES128-SHA256,ECDHP384-AES192-SHA384,DHGroup14-AES128-SHA1
-Andreas Steffen
+ForceDH      No
-Andreas Steffen
+</pre>
 Andreas Steffen
-Andreas Steffen
+h2. 2 Suite B with 128 Bit Security
 Andreas Steffen
-Andreas Steffen
+h3. 2.1 Windows Connection Security Rule
 Andreas Steffen
-Andreas Steffen
+First we create a new "VPN Suite B 256" security rule. As first authentication method we choose ECDSA-P256 and and select our Root CA:
 Andreas Steffen
-Andreas Steffen
+!advfirewall_auth_method_ecdsa_256.png!
 Andreas Steffen
-Andreas Steffen
+Also the connection endpoints (traffic selectors) as well as the local and remote IP address of the VPN connection must be defined:
 Andreas Steffen
-Andreas Steffen
+!advfirewall_security_rule_256.png!
 Andreas Steffen
-Andreas Steffen
+The following command sets the IKEv1 Quick Mode algorithms in the rule "VPN Suite B 256":
 Andreas Steffen
-Andreas Steffen
+<pre>
-Andreas Steffen
+netsh advfirewall consec set rule name="VPN Suite B 256" new qmsecmethods=esp:aesgcm128-aesgcm128,esp:aesgcm192-aesgcm192,esp:aesgcm256-aesgcm256
-Andreas Steffen
+</pre>
 Andreas Steffen
-Andreas Steffen
+These Suite B Quick Mode parameters cannot be set via the graphical advanced firewall interface. The resulting current rule settings are shown with the following command:
 Andreas Steffen
-Andreas Steffen
+<pre>
-Andreas Steffen
+netsh advfirewall consec show rule name="VPN Suite B 256"
 Andreas Steffen
-Andreas Steffen
+Rule Name:                            VPN Suite B 256
-Andreas Steffen
+----------------------------------------------------------------------
-Andreas Steffen
+Enabled:                              Yes
-Andreas Steffen
+Profiles:                             Domain,Private,Public
-Andreas Steffen
+Type:                                 Static
-Andreas Steffen
+Mode:                                 Tunnel
-Andreas Steffen
+LocalTunnelEndpoint:                  10.10.0.6
-Andreas Steffen
+RemoteTunnelEndpoint:                 10.10.0.1
-Andreas Steffen
+Endpoint1:                            10.10.0.6/32
-Andreas Steffen
+Endpoint2:                            10.10.1.0/24
-Andreas Steffen
+Protocol:                             Any
-Andreas Steffen
+Action:                               RequireInRequireOut
-Andreas Steffen
+Auth1:                                ComputerCertECDSAP256
-Andreas Steffen
+Auth1ECDSAP256CAName:                 C=CH, O=strongSec GmbH, CN=strongSec 2007 CA
-Andreas Steffen
+Auth1ECDSAP256CertMapping:            No
-Andreas Steffen
+Auth1ECDSAP256ExcludeCAName:          No
-Andreas Steffen
+Auth1ECDSAP256CertType:               Root
-Andreas Steffen
+Auth1ECDSAP256HealthCert:             No
-Andreas Steffen
+MainModeSecMethods:                   ECDHP256-AES128-SHA256,ECDHP384-AES192-SHA384,DHGroup14-AES128-SHA1
-Andreas Steffen
+QuickModeSecMethods:                  ESP:AESGCM128-AESGCM128+60min+100000kb,ESP:AESGCM192-AESGCM192+60min+100000kb,ESP:AESGCM256-AESGCM256+60min+100000kb
-Andreas Steffen
+ExemptIPsecProtectedConnections:      No
-Andreas Steffen
+ApplyAuthorization:                   No
-Andreas Steffen
+Ok.
-Andreas Steffen
+</pre>
 Andreas Steffen
-Andreas Steffen
+h3. 2.2 strongSwan Connection Definition
 Andreas Steffen
-Andreas Steffen
+On the strongSwan side the following entries are required in ipsec.conf for 128 bit security:
 Andreas Steffen
-Andreas Steffen
+<pre>
-Andreas Steffen
+conn suiteB-256
-Andreas Steffen
+     leftcert=koala_ec256Cert.pem
-Andreas Steffen
+     rightid="C=CH, O=strongSec GmbH, OU=ECDSA-256, CN=bonsai.strongsec.com"
-Andreas Steffen
+     ike=aes128-sha256-ecp256!
-Andreas Steffen
+     esp=aes128gcm16!
-Andreas Steffen
+     also=suiteB
-Andreas Steffen
+     auto=add
 Andreas Steffen
-Andreas Steffen
+conn suiteB
-Andreas Steffen
+     left=10.10.0.1
-Andreas Steffen
+     leftsubnet=10.10.1.0/24
-Andreas Steffen
+     leftid=@koala.strongsec.com
-Andreas Steffen
+     leftfirewall=yes
-Andreas Steffen
+     lefthostaccess=yes
-Andreas Steffen
+     right=10.10.0.6
-Andreas Steffen
+     rightca=%same
-Andreas Steffen
+     keyexchange=ikev1
-Andreas Steffen
+     pfs=no
-Andreas Steffen
+     dpdaction=clear
-Andreas Steffen
+     dpddelay=300s
-Andreas Steffen
+     rekey=no
-Andreas Steffen
+</pre>
 Andreas Steffen
-Andreas Steffen
+h3. 2.3 Windows Security Association Monitoring
 Andreas Steffen
-Andreas Steffen
+Pinging host 10.10.1.11 behind the Linux VPN gateway from the Windows host triggers the IKEv1 tunnel setup.
-Andreas Steffen
+The following Windows status information is available for the Main Mode:
 Andreas Steffen
-Andreas Steffen
+!advfirewall_main_mode_128.png!
 Andreas Steffen
-Andreas Steffen
+and the established Quick Mode:
 Andreas Steffen
-Andreas Steffen
+!advfirewall_quick_mode_128.png!
 Andreas Steffen
-Andreas Steffen
+h3. 2.4 strongSwan IPsec Status Information
 Andreas Steffen
-Andreas Steffen
+Here the resulting status output on the Linux side:
 Andreas Steffen
-Andreas Steffen
+<pre>
-Andreas Steffen
+root@koala:~# ipsec statusall suiteB-256
 Andreas Steffen
-Andreas Steffen
+Status of IKEv1 pluto daemon (strongSwan 4.3.3):
-Andreas Steffen
+interface eth1/eth1 10.10.0.1:4500
-Andreas Steffen
+interface eth1/eth1 10.10.0.1:500
-Andreas Steffen
+loaded plugins: curl test-vectors aes des sha1 sha2 md5 gmp openssl pubkey random hmac
-Andreas Steffen
+debug options: control
 Andreas Steffen
-Andreas Steffen
+"suiteB-256": 10.10.1.0/24===10.10.0.1[@koala.strongsec.com]...10.10.0.6[C=CH, O=strongSec GmbH, OU=ECDSA-256, CN=bonsai.strongsec.com]; erouted; eroute owner: !#2
-Andreas Steffen
+"suiteB-256":   CAs: 'C=CH, O=strongSec GmbH, CN=strongSec 2007 CA'...'C=CH, O=strongSec GmbH, CN=strongSec 2007 CA'
-Andreas Steffen
+"suiteB-256":   ike_life: 10800s; ipsec_life: 3600s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 3
-Andreas Steffen
+"suiteB-256":   dpd_action: clear; dpd_delay: 300s; dpd_timeout: 150s;
-Andreas Steffen
+"suiteB-256":   policy: PUBKEY+ENCRYPT+TUNNEL+DONTREKEY; prio: 24,32; interface: eth1;
-Andreas Steffen
+"suiteB-256":   newest ISAKMP SA: !#1; newest IPsec SA: !#2;
-Andreas Steffen
+"suiteB-256":   IKE proposal: AES_CBC_128/HMAC_SHA2_256/ECP_256
-Andreas Steffen
+"suiteB-256":   ESP proposal: AES_GCM_16_128/AUTH_NONE/<N/A>
 Andreas Steffen
-Andreas Steffen
+!#2: "suiteB-256" STATE_QUICK_R2 (IPsec SA established); EVENT_SA_EXPIRE in 3579s; newest IPSEC; eroute owner
-Andreas Steffen
+!#2: "suiteB-256" esp.aa4cf272@10.10.0.6 (180 bytes, 16s ago) esp.cdf37664@10.10.0.1 (240 bytes, 16s ago); tunnel
-Andreas Steffen
+!#1: "suiteB-256" STATE_MAIN_R3 (sent MR3, ISAKMP SA established); EVENT_SA_EXPIRE in 28778s; newest ISAKMP
 Andreas Steffen
-Andreas Steffen
+</pre>
 Andreas Steffen
-Andreas Steffen
+h2. 3 Suite B with 192 Bit Security
 Andreas Steffen
-Andreas Steffen
+h3. 3.1 Windows Connection Security Rule
 Andreas Steffen
-Andreas Steffen
+We create a "VPN Suite B 384" security rule: As first authentication method we choose ECDSA-P384 and and select our Root CA:
 Andreas Steffen
-Andreas Steffen
+!advfirewall_auth_method_ecdsa_384.png!
 Andreas Steffen
-Andreas Steffen
+Also the connection endpoints (traffic selectors) as well as the local and remote IP address of the VPN connection must be defined:
 Andreas Steffen
-Andreas Steffen
+!advfirewall_security_rule_384.png!
 Andreas Steffen
-Andreas Steffen
+The following command sets the IKEv1 Quick Mode algorithms in the rule "VPN Suite B 384":
 Andreas Steffen
-Andreas Steffen
+<pre>
-Andreas Steffen
+netsh advfirewall consec set rule name="VPN Suite B 384" new qmsecmethods=esp:aesgcm128-aesgcm128,esp:aesgcm192-aesgcm192,esp:aesgcm256-aesgcm256
-Andreas Steffen
+</pre>
 Andreas Steffen
-Andreas Steffen
+These Suite B Quick Mode parameters cannot be set via the graphical advanced firewall interface. The resulting current rule settings are shown with the following command:
 Andreas Steffen
-Andreas Steffen
+<pre>
-Andreas Steffen
+netsh advfirewall consec show rule name="VPN Suite B 384"
 Andreas Steffen
-Andreas Steffen
+Rule Name:                            VPN Suite B 384
-Andreas Steffen
+----------------------------------------------------------------------
-Andreas Steffen
+Enabled:                              Yes
-Andreas Steffen
+Profiles:                             Domain,Private,Public
-Andreas Steffen
+Type:                                 Static
-Andreas Steffen
+Mode:                                 Tunnel
-Andreas Steffen
+LocalTunnelEndpoint:                  10.10.0.6
-Andreas Steffen
+RemoteTunnelEndpoint:                 10.10.0.1
-Andreas Steffen
+Endpoint1:                            10.10.0.6/32
-Andreas Steffen
+Endpoint2:                            10.10.1.0/24
-Andreas Steffen
+Protocol:                             Any
-Andreas Steffen
+Action:                               RequireInRequireOut
-Andreas Steffen
+Auth1:                                ComputerCertECDSAP384
-Andreas Steffen
+Auth1ECDSAP384CAName:                 C=CH, O=strongSec GmbH, CN=strongSec 2007 CA
-Andreas Steffen
+Auth1ECDSAP384CertMapping:            No
-Andreas Steffen
+Auth1ECDSAP384ExcludeCAName:          No
-Andreas Steffen
+Auth1ECDSAP384CertType:               Root
-Andreas Steffen
+Auth1ECDSAP384HealthCert:             No
-Andreas Steffen
+MainModeSecMethods:                   ECDHP256-AES128-SHA256,ECDHP384-AES192-SHA384,DHGroup14-AES128-SHA1
-Andreas Steffen
+QuickModeSecMethods:                  ESP:AESGCM128-AESGCM128+60min+100000kb,ESP:AESGCM192-AESGCM192+60min+100000kb,ESP:AESGCM256-AESGCM256+60min+100000kb
-Andreas Steffen
+ExemptIPsecProtectedConnections:      No
-Andreas Steffen
+ApplyAuthorization:                   No
-Andreas Steffen
+Ok.
-Andreas Steffen
+</pre>
 Andreas Steffen
-Andreas Steffen
+h3. 3.2 strongSwan Connection Definition
 Andreas Steffen
-Andreas Steffen
+On the strongSwan side the following entries are required in ipsec.conf for 192 bit security:
 Andreas Steffen
-Andreas Steffen
+<pre>
-Andreas Steffen
+conn suiteB-384
-Andreas Steffen
+     leftcert=koala_ec384Cert.pem
-Andreas Steffen
+     rightid="C=CH, O=strongSec GmbH, OU=ECDSA-384, CN=bonsai.strongsec.com"
-Andreas Steffen
+     ike=aes192-sha384-ecp384!
-Andreas Steffen
+     esp=aes192gcm16!
-Andreas Steffen
+     also=suiteB
-Andreas Steffen
+     auto=add
 Andreas Steffen
-Andreas Steffen
+conn suiteB
-Andreas Steffen
+     left=10.10.0.1
-Andreas Steffen
+     leftsubnet=10.10.1.0/24
-Andreas Steffen
+     leftid=@koala.strongsec.com
-Andreas Steffen
+     leftfirewall=yes
-Andreas Steffen
+     lefthostaccess=yes
-Andreas Steffen
+     right=10.10.0.6
-Andreas Steffen
+     rightca=%same
-Andreas Steffen
+     keyexchange=ikev1
-Andreas Steffen
+     pfs=no
-Andreas Steffen
+     dpdaction=clear
-Andreas Steffen
+     dpddelay=300s
-Andreas Steffen
+     rekey=no
-Andreas Steffen
+</pre>
 Andreas Steffen
-Andreas Steffen
+h3. 3.3 Windows Security Association Monitoring
 Andreas Steffen
-Andreas Steffen
+Pinging host 10.10.1.11 behind the Linux VPN gateway from the Windows host triggers the IKEv1 tunnel setup.
-Andreas Steffen
+The following Windows status information is available for the Main Mode:
 Andreas Steffen
-Andreas Steffen
+!advfirewall_main_mode_192.png!
 Andreas Steffen
-Andreas Steffen
+and the established Quick Mode:
 Andreas Steffen
-Andreas Steffen
+!advfirewall_quick_mode_192.png!
 Andreas Steffen
-Andreas Steffen
+h3. 3.4 strongSwan IPsec Status Information
 Andreas Steffen
-Andreas Steffen
+Here the resulting status output on the Linux side:
 Andreas Steffen
-Andreas Steffen
+<pre>
-Andreas Steffen
+root@koala:~# ipsec statusall suiteB-384
 Andreas Steffen
-Andreas Steffen
+Status of IKEv1 pluto daemon (strongSwan 4.3.3):
-Andreas Steffen
+interface eth1/eth1 10.10.0.1:4500
-Andreas Steffen
+interface eth1/eth1 10.10.0.1:500
-Andreas Steffen
+loaded plugins: curl test-vectors aes des sha1 sha2 md5 gmp openssl pubkey random hmac
-Andreas Steffen
+debug options: control
 Andreas Steffen
-Andreas Steffen
+"suiteB-384": 10.10.1.0/24===10.10.0.1[@koala.strongsec.com]...10.10.0.6[C=CH, O=strongSec GmbH, OU=ECDSA-384, CN=bonsai.strongsec.com]; erouted; eroute owner: !#6
-Andreas Steffen
+"suiteB-384":   CAs: 'C=CH, O=strongSec GmbH, CN=strongSec 2007 CA'...'C=CH, O=strongSec GmbH, CN=strongSec 2007 CA'
-Andreas Steffen
+"suiteB-384":   ike_life: 10800s; ipsec_life: 3600s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 3
-Andreas Steffen
+"suiteB-384":   dpd_action: clear; dpd_delay: 300s; dpd_timeout: 150s;
-Andreas Steffen
+"suiteB-384":   policy: PUBKEY+ENCRYPT+TUNNEL+DONTREKEY; prio: 24,32; interface: eth1;
-Andreas Steffen
+"suiteB-384":   newest ISAKMP SA: !#5; newest IPsec SA: !#6;
-Andreas Steffen
+"suiteB-384":   IKE proposal: AES_CBC_192/HMAC_SHA2_384/ECP_384
-Andreas Steffen
+"suiteB-384":   ESP proposal: AES_GCM_16_192/AUTH_NONE/<N/A>
 Andreas Steffen
-Andreas Steffen
+!#6: "suiteB-384" STATE_QUICK_R2 (IPsec SA established); EVENT_SA_EXPIRE in 3591s; newest IPSEC; eroute owner
-Andreas Steffen
+!#6: "suiteB-384" esp.f54365c2@10.10.0.6 (180 bytes, 4s ago) esp.9f80bd7e@10.10.0.1 (240 bytes, 4s ago); tunnel
-Andreas Steffen
+!#5: "suiteB-384" STATE_MAIN_R3 (sent MR3, ISAKMP SA established); EVENT_SA_EXPIRE in 28790s; newest ISAKMP
 Andreas Steffen
-Andreas Steffen
+</pre>

Project

General

Profile

strongSwan

Windows Suite B Support with IKEv1 » History » Version 26