StrongSwan: Difference between revisions

Line 16:

strongSwan 5.6.3 in openSUSE Tumbleweed (8th April 2019) was used as the basis for this guide.

We will be using the modern strongSwan VICI ~~backend~~, not the old stroke ~~backend as~~ strongSwan is starting to phase ~~this method~~ out.

We will be using the modern strongSwan VICI back-end, not the old stroke back-end. strongSwan is starting to phase the stroke back-end out.

Commands under Windows with the [[File:Administrator_Shield.png]] icon may need administrator credentials to complete them.

Line 35:

* <code>firewalld</code>

As this is a system package, restart the computer afterwards. We will be using <code>iptables</code> to manipulate the network traffic, not <code>firewalld</code> as we don't run a firewall at the server level, it is run ~~futher~~ up. It can be configured through the SuSEFirewall2 but we do not use this so additional research is required. The package may need to be marked as Taboo in Tumbleweed so that it doesn't try to reinstall it later.

As this is a system package, restart the computer afterwards. We will be using <code>iptables</code> to manipulate the network traffic, not <code>firewalld</code> as we don't run a firewall at the server level, it is run further up. It can be configured through the SuSEFirewall2 but we do not use this so additional research is required. The package may need to be marked as Taboo in Tumbleweed so that it doesn't try to reinstall it later.

= Important note =

Line 178:

== Loading the new settings ==

Once strongSwan is configured, the settings need loading into the VICI ~~backend~~. This is done by typing:

Once strongSwan is configured, the settings need loading into the VICI back-end. This is done by typing:

swanctl --load-all

@@ Line 16: / Line 16: @@
 strongSwan 5.6.3 in openSUSE Tumbleweed (8th April 2019) was used as the basis for this guide.
-We will be using the modern strongSwan VICI backend, not the old stroke backend as strongSwan is starting to phase this method out.
+We will be using the modern strongSwan VICI back-end, not the old stroke back-end. strongSwan is starting to phase the stroke back-end out.
 Commands under Windows with the [[File:Administrator_Shield.png]] icon may need administrator credentials to complete them.
@@ Line 35: / Line 35: @@
 * <code>firewalld</code>
-As this is a system package, restart the computer afterwards. We will be using <code>iptables</code> to manipulate the network traffic, not <code>firewalld</code> as we don't run a firewall at the server level, it is run futher up. It can be configured through the SuSEFirewall2 but we do not use this so additional research is required. The package may need to be marked as Taboo in Tumbleweed so that it doesn't try to reinstall it later.
+As this is a system package, restart the computer afterwards. We will be using <code>iptables</code> to manipulate the network traffic, not <code>firewalld</code> as we don't run a firewall at the server level, it is run further up. It can be configured through the SuSEFirewall2 but we do not use this so additional research is required. The package may need to be marked as Taboo in Tumbleweed so that it doesn't try to reinstall it later.
 = Important note =
@@ Line 178: / Line 178: @@
 == Loading the new settings ==
-Once strongSwan is configured, the settings need loading into the VICI backend. This is done by typing:
+Once strongSwan is configured, the settings need loading into the VICI back-end. This is done by typing:
   swanctl --load-all