IKEv2-setup - Set up Ubuntu Server 17.04 as an IKEv2 VPN server

  •        73

A Bash script that takes Ubuntu Server 17.04 from clean install to production-ready IKEv2 VPN with strongSwan. Comments and pull requests welcome.Configuration files, scripts and instructions are sent by email. They are also dropped in the newly-created non-root user's home directory on the server (this point may be important, because VPS providers sometimes block traffic on port 25 by default, and conscientious email providers will sometimes mark a successfully sent email as spam).

https://github.com/jawj/IKEv2-setup

Tags
Implementation
License
Platform

   




Related Projects

algo - Set up a personal IPSEC VPN in the cloud

  •    Shell

Algo VPN is a set of Ansible scripts that simplify the setup of a personal IPSEC VPN. It uses the most secure defaults available, works with common cloud providers, and does not require client software on most devices. See our release announcement for more information. The easiest way to get an Algo server running is to let it set up a new virtual machine in the cloud for you.

setup-ipsec-vpn - Scripts to build your own IPsec VPN server, with IPsec/L2TP and Cisco IPsec on Ubuntu, Debian and CentOS

  •    Shell

Set up your own IPsec VPN server in just a few minutes, with both IPsec/L2TP and Cisco IPsec on Ubuntu, Debian and CentOS. All you need to do is provide your own VPN credentials, and let the scripts handle the rest. An IPsec VPN encrypts your network traffic, so that nobody between you and the VPN server can eavesdrop on your data as it travels via the Internet. This is especially useful when using unsecured networks, e.g. at coffee shops, airports or hotel rooms.

strongSwan - IPsec-based VPN Solution

  •    C

strongSwan is an OpenSource IPsec implementation. IPSec is an encryption and authentication standard that can be used to build secure Virtual Private Networks (VPNs). It has powerful IPsec policies supporting large and complex VPN networks. It implements both the IKEv1 and IKEv2 (RFC 7296) key exchange protocols.

setup-simple-ipsec-l2tp-vpn - Setup a simple IPSec/L2TP VPN Server for Ubuntu and Debian

  •    Shell

This script is very fragmented. The other scripts for Arch Linux, CentOS and Fedora are not up to date. They are insecure and don't feature a init.d startup and helper script. Furthermore it uses libreswan, which is not as well maintained and documented as strongswan. For these and other reasons I updated the strongswan script. It supports both IPSec over L2TP and "pure" IPSec with the same installation. It is also based on my work on a strongswan docker container, which will be much more regularly maintained as well.

Openswan - IPsec implementation for Linux

  •    C

Openswan is an IPsec implementation for Linux. It has support for most of the extensions (RFC + IETF drafts) related to IPsec, including IKEv2, X.509 Digital Certificates, NAT Traversal, and many others. It has been the de-facto Virtual Private Network software for the Linux community since 2005. If you are running Fedora, Red Hat, Ubuntu, Debian (Wheezy), Gentoo, or many others, it is already included in your distribution.


AWS-VPN-Server-Setup - Setup your own private, secure, free* VPN on the Amazon AWS Cloud in 10 minutes

  •    

Please refer to the blog article with all details on setting up your VPN server on the AWS cloud using cloudformation templates. You can launch a VPN on any of AWS regions which include Tokyo, Singapore, Sydney, Frankfurt, Ireland, Sao Paulo, N. Virginia, N. California, Oregon, Mumbai, London, Canada central and Seoul.

setup-strong-strongswan - [UNMAINTAINED] Setup a (really) strong StrongSwan VPN Server for Ubuntu and Debian

  •    Shell

This script doesn't need a domain or specific public IP to work. For upgrading Strongswan you can just run the script again. Remember to back up your custom IPSec configuration files beforehand.

EAP-IKEv2

  •    C

Project contains a library and patches for freeRADIUS and wpa_supplicant which implements ideas of draft-tschofenig-eap-ikev2-12.txt Internet-Draft (http://tools.ietf.org/wg/eap/draft-tschofenig-eap-ikev2-12.txt)

voodooprivacy - Roll your own VPN server on Amazon EC2 and battle-ready firewall for OS X

  •    Python

Protect your computer from unsecure environment with a very strict firewall and a strong VPN through Amazon EC2. Thanks for your interest in this project! Lin Song has built a newer version which is tested with 2016 releases of Ubuntu/Debian/CentOS/RHEL and includes VPN setup instructions for a lot more platforms. It is available under the same license here.

openvpn-install - Set up your own OpenVPN server on Debian, Ubuntu, Fedora, CentOS, and Arch Linux

  •    Shell

OpenVPN installer for Debian, Ubuntu, Fedora, CentOS and Arch Linux. This script will let you setup your own secure VPN server in just a few minutes.

openvpn-install - OpenVPN road warrior installer for Debian, Ubuntu and CentOS

  •    Shell

OpenVPN road warrior installer for Debian, Ubuntu and CentOS. This script will let you setup your own VPN server in no more than a minute, even if you haven't used OpenVPN before. It has been designed to be as unobtrusive and universal as possible.

docker-ipsec-vpn-server - Docker image to run an IPsec VPN server, with IPsec/L2TP and Cisco IPsec

  •    Shell

Docker image to run an IPsec VPN server, with both IPsec/L2TP and Cisco IPsec. Based on Debian 9 (Stretch) with Libreswan (IPsec VPN software) and xl2tpd (L2TP daemon).

PeerVPN - the open source peer-to-peer VPN

  •    C

PeerVPN is a software that builds virtual ethernet networks between multiple computers. Such a virtual network can be useful to facilitate direct communication that applications like file sharing or gaming may need. Often, such direct communication is made impossible or very difficult by firewalls or NAT devices.

SoftEther VPN - Cross-platform Multi-protocol VPN Program

  •    C

SoftEther VPN is a ?Cross-platform Multi-protocol VPN Program. It supports SSL-VPN protocol to penetrate any kinds of firewalls. Ultra-optimized SSL-VPN Protocol of SoftEther VPN has very fast throughput, low latency and firewall resistance. Virtualization of Ethernet devices is the key of the SoftEther VPN architecture. It virtualizes Ethernet devices in order to realize a flexible virtual private network for both remote-access VPN and site-to-site VPN.

xiringuito - SSH-based "VPN for poors"

  •    Shell

This is the "VPN without VPN" software done using nice built-in capabilities of SSH. Yes! That easy - just pass an SSH server and the list of networks your want to access through this server.

openconnect - OpenConnect client extended to support Palo Alto Networks' GlobalProtect VPN

  •    C

This is a modified version of the fantastic open-source VPN client OpenConnect which supports the PAN GlobalProtect VPN in its native modes (SSL and ESP)—with no assistance or cooperation needed from your VPN administrators. I began developing it in October 2016, and started using it for "real work" almost immediately. It has become increasingly polished since then.

Amahi Home Server - Making Home Networking Simple

  •    C

The Amahi Home Server makes your home networking simple, It is called as Home Digital Assistant. Its core functionality include protecting your files and computers, Access, share and search your files from any machine on your network, making it easy to share and find your photos, music and videos, Automatically setup your own VPN, Shared applications like calendaring, private wiki and more to come, will help you manage your home and your family.

autovpn - Easily connect to a VPN in a country of your choice.

  •    Go

autovpn is a tool to automatically connect you to a random VPN in a country of your choice. It uses openvpn to connect you to a server obtained from VPN Gate.Tested and works on Fedora 23. Dunno about Windows. Patches welcome.

UDPspeeder - A Tunnel which Improves your Network Quality on a High-latency Lossy Link by using Forward Error Correction,for All Traffics(TCP/UDP/ICMP)

  •    C++

A Tunnel which Improves your Network Quality on a High-latency Lossy Link by using Forward Error Correction. Assume your local network to your server is lossy. Just establish a VPN connection to your server with UDPspeeder + any UDP-based VPN, access your server via this VPN connection, then your connection quality will be significantly improved. With well-tuned parameters , you can easily reduce IP or UDP/ICMP packet-loss-rate to less than 0.01% . Besides reducing packet-loss-rate, UDPspeeder can also significantly improve your TCP latency and TCP single-thread download speed.

Wireguard - Fast, Modern, Secure, VPN Tunnel

  •    C

WireGuard is an extremely simple yet fast and modern VPN that utilizes state-of-the-art cryptography. It aims to be faster, simpler, leaner, and more useful than IPSec, while avoiding the massive headache. It intends to be considerably more performant than OpenVPN. WireGuard is designed as a general purpose VPN for running on embedded interfaces and super computers alike, fit for many different circumstances.