How to connect to a IPsec VPN with Preshared key and Xauth from Linux?
I would very much like to connect to a VPN network which have these info:
host: example.com
user: my_name
pass: my_pass
group: VPN1
key: secret_passphrase
It uses Preshared key and Xauth.
Can I connect to this VPN from my Linux desktop, and if so, how? =)
Solution 1:
There is a couple of IPSec compatible VPN client:
- openswan
- ike
- vpnc
- official cisco linux client
They all work well depending of the IPSec server. There is even a GUI for VPNC that integrate into Ubuntu network manager.
Official Cisco client is harder to install, require kernel headers, user-space binaries in 32 bits only. It can be tricky to install this one.
The problems starts with Xauth and Cisco devices when using non-Cisco hardware. I personnaly tried many times with occasional success.
Which distribution you use? Which IPsec server you connect to?
If you have ubuntu, you can give a try to vpn:
sudo apt-get install network-manager-vpnc vpnc
and set a new VPN connection using your configuration.
Solution 2:
OpenVPN uses its own SSL-based protocol which is not compatible with IPSEC
Solution 3:
The shrewsoft vpn client will be able to connect. http://www.shrew.net/software
Solution 4:
I'm using the vpnc (Debian) on most systems. IPSec is the way to go, in my opinion. I wouldn't recommend the frontend, though, because it is sort of confusing if you don't know what you are doing.
They should stick with the correct terms instead of trying to make something user-friendly, which is not supposed to be used by the average Joe anyways.
- Cisco client: way too much hassle.
- ike: heard only good stuff about it, but it wasn't in my repository.
- vpnc: Works fine with anything IPSec based, such as FritzBox, if anybody is interested in that.
- openvpn: no IPSec support, you do not want that.