Skip to content

andrey0001/strongswan

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
2 branches 0 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
Dockerfile
 
 
README.md
 
 
ipsec.conf
 
 
ipsec.secrets
 
 
start.sh
 
 
strongswan.conf
 
 
StrongSwan as a Docker container IPSec XAUTH ikev1 VPN server

README.md

StrongSwan as a Docker container

Latest image based on alpine, please use alpine branch for it.

IPSec XAUTH ikev1 VPN server

Just build it or pull it from andrey0001/strongswan and run it something like this:

docker run -t -d --privileged \
-e VPN_USER=user \
-e VPN_PASS=password \
-e VPN_PSK=secretkey \
-e VPN_SUBNET=192.168.14.0/24 \
--publish 4500:4500/udp \
--publish 500:500/udp \
--hostname strongswan \
--name strongswan andrey0001/strongswan
  • VPN_USER = username (default:user1)
  • VPN_PASS = password (default:Sup3rS3cr3t)
  • VPN_PSK = preshared key (default:s3cr3tk3y)
  • VPN_SUBNET = network (default:192.168.95.0/24)

You could add additional users to the file /etc/strongswan/ipsec.secrets , then reload secrets by:

strongswan rereadsecrets

inside the container.

Also, you could use volume (bind mount a volume) for configuration files of strongswan (to store it on host):

-v /etc/strongswan:/etc/strongswan

and reread secrets from host:

docker exec -it strongswan /usr/sbin/strongswan rereadsecrets

and reread configuration

docker exec -it strongswan /usr/sbin/strongswan update

About

IPSec XAUTH ikev1 VPN server (strongswan in docker)

Topics

docker ipsec vpn-server strongswan ipsec-vpn ikev1

Resources

Readme
Activity

Stars

5 stars

Watchers

0 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages