1
0
mirror of https://github.com/vimagick/dockerfiles.git synced 2024-12-25 02:04:06 +02:00
dockerfiles/strongswan/README.md

48 lines
1.0 KiB
Markdown

strongswan
==========
![](https://badge.imagelayers.io/vimagick/strongswan:latest.svg)
[strongSwan][1] is an Open Source IPsec-based VPN solution for Linux and other
UNIX based operating systems implementing both the IKEv1 and IKEv2 key exchange
protocols.
> :warning: This docker image only support IKEv2!
### docker-compose.yml
```yaml
version: '2'
services:
strongswan:
image: vimagick/strongswan
ports:
- 500:500/udp
- 4500:4500/udp
volumes:
- /lib/modules:/lib/modules
- /etc/localtime:/etc/localtime
environment:
- VPN_DOMAIN=vpn.easypi.info
- VPN_NETWORK=10.20.30.0/24
- LAN_NETWORK=192.168.0.0/16
- VPN_P12_PASSWORD=secret
tmpfs: /run
privileged: yes
restart: always
```
### up and running
```bash
docker-compose up -d
docker cp strongswan_strongswan_1:/etc/ipsec.d/client.mobileconfig .
docker cp strongswan_strongswan_1:/etc/ipsec.d/client.cert.p12 .
docker-compose logs -f
```
- Mac/IOS: `client.mobileconfig`
- Android: `client.cert.p12`
[1]: https://strongswan.org/