Jochen

Asked: 2016-11-30 05:54:00 +0800 CST2016-11-30 05:54:00 +0800 CST 2016-11-30 05:54:00 +0800 CST

How can I secure all traffic using strongSwan/IPSec except SSH access?

how can I configure strongSwan to require IPSec for all connections except SSH connections?

I tried creating two connections:

Create a "connection" for SSH using passthrough mode (left=%any/right=%any) and leftsubnet=%dynamic[tcp/22]
Secure all traffic with transport mode (left=%any/right=%any)

However, when I restart strongSwan, I cannot SSH into the server. It seems to me I have to prioritize the connections, but I have found no way to do that.

Any help would be greatly appreciated.

Regards, Jochen

How can I secure all traffic using strongSwan/IPSec except SSH access?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?

How can I secure all traffic using strongSwan/IPSec except SSH access?

0 Answers