Google Cloud Platform – Site-to-Site VPN on GCP with Strongswan
/
I installed strongswan VPN on my GCP Compute (Ubuntu 20.04) drive with reference to https://www.digitalocean.com/community/tutorials/how-to-set-up-an-ikev2-vpn-server-with-strongswan-on -ubuntu-20-04
I have 3 different projects and have tunneled everyone from Strongswan VPN Compute Engine.
Below is the ipsec.conf file
conn strongswan-to-ops ikelifetime = 600m #36,000s keylife = 180m #10,800s rekeymargin = 3m keyingtries = 3 keyexchange = ikev2 mobike = no ike = chacha20poly1305-sha512-curve25519-prfsha512, aes256gcm16-cha5sha123 -modp1024, aes128-sha1-modp1024, 3des-sha1-modp1024! esp = chacha20poly1305-sha512, aes256gcm16-ecp384, aes256-sha256, aes256-sha1,3des-sha1! authby = psk left = 172.xxx # if NAT is set on the internal IP, eg 10.164.0.6 leftid = 172.xxx leftsubnet = 192.xxx / 24 leftauth = psk right =[gateway IP]
right =[gateway IP]
rightsubnet = 172.xxx / 16 rightauth = psk type = tunnel auto = start dpdaction = restart
Show IPsec status
Safety couplings (2 up, 0 connected): strongswan-to-ops[4]: ESTABLISHED 46 minutes ago, strongswan-to-ops 3: INSTALLED, TUNNEL, reqid 2, ESP in UDP SPIs: c233fb9c_i 17261c13_o strongswan-to-ops 3: 192.xxx/24 === 172.xxx/ 16
But still unable to access other HTTP server/virtual machine in other projects
[ad_1]
Don’t forget to share this post with friends !