dockerfiles/strongswan/README.md

strongswan
==========

![](https://badge.imagelayers.io/vimagick/strongswan:latest.svg)

[strongSwan][1] is an Open Source IPsec-based VPN solution for Linux and other
UNIX based operating systems implementing both the IKEv1 and IKEv2 key exchange
protocols.

> :warning: This docker image only support IKEv2!

### docker-compose.yml

```yaml
version: '2'
services:
  strongswan:
    image: vimagick/strongswan
    ports:
      - 500:500/udp
      - 4500:4500/udp
    volumes:
      - /lib/modules:/lib/modules
      - /etc/localtime:/etc/localtime
    environment:
      - VPN_DOMAIN=vpn.easypi.info
      - VPN_NETWORK=10.20.30.0/24
      - LAN_NETWORK=192.168.0.0/16
      - VPN_P12_PASSWORD=secret
    tmpfs: /run
    privileged: yes
    restart: always
```

### up and running

```bash
docker-compose up -d
docker cp strongswan_strongswan_1:/etc/ipsec.d/client.mobileconfig .
docker cp strongswan_strongswan_1:/etc/ipsec.d/client.cert.p12 .
docker-compose logs -f
```

- Mac/IOS: `client.mobileconfig`
- Android: `client.cert.p12`

[1]: https://strongswan.org/
add strongswan 2016-06-27 21:16:42 +02:00			`strongswan`
			`==========`

			`![](https://badge.imagelayers.io/vimagick/strongswan:latest.svg)`

			`[strongSwan][1] is an Open Source IPsec-based VPN solution for Linux and other`
			`UNIX based operating systems implementing both the IKEv1 and IKEv2 key exchange`
			`protocols.`

			`> :warning: This docker image only support IKEv2!`

			`### docker-compose.yml`

			```yaml
strongswan uses docker-compose v2 2016-06-30 17:46:01 +02:00			`version: '2'`
			`services:`
			`strongswan:`
			`image: vimagick/strongswan`
			`ports:`
			`- 500:500/udp`
			`- 4500:4500/udp`
			`volumes:`
			`- /lib/modules:/lib/modules`
			`- /etc/localtime:/etc/localtime`
			`environment:`
			`- VPN_DOMAIN=vpn.easypi.info`
			`- VPN_NETWORK=10.20.30.0/24`
strongswan: Split-Tunneling with IKEv2 2016-06-30 18:09:28 +02:00			`- LAN_NETWORK=192.168.0.0/16`
strongswan uses docker-compose v2 2016-06-30 17:46:01 +02:00			`- VPN_P12_PASSWORD=secret`
			`tmpfs: /run`
			`privileged: yes`
			`restart: always`
add strongswan 2016-06-27 21:16:42 +02:00			```

			`### up and running`

			```bash
			`docker-compose up -d`
			`docker cp strongswan_strongswan_1:/etc/ipsec.d/client.mobileconfig .`
update pptpd 2016-06-28 11:28:49 +02:00			`docker cp strongswan_strongswan_1:/etc/ipsec.d/client.cert.p12 .`
update strongswan 2016-06-27 22:30:22 +02:00			`docker-compose logs -f`
add strongswan 2016-06-27 21:16:42 +02:00			```

update pptpd 2016-06-28 11:28:49 +02:00			- Mac/IOS: `client.mobileconfig`
			- Android: `client.cert.p12`
add strongswan 2016-06-27 21:16:42 +02:00
			`[1]: https://strongswan.org/`