[GH-ISSUE #405] Some Linux clients cannot connect #380

New issue

Closed

opened 2026-03-02 08:01:45 +03:00 by kerem · 1 comment

kerem commented 2026-03-02 08:01:45 +03:00

Owner

Copy link

Originally created by @SJ-Y054 on GitHub (Oct 26, 2023).
Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/405

Checklist

• I searched existing Issues, and did not find a similar enhancement request
• This enhancement request is about the IPsec VPN server Docker image, and not IPsec VPN itself
• I read the README
• I read the Important notes
• I followed instructions to configure VPN clients
• I checked IKEv1 troubleshooting, IKEv2 troubleshooting, enabled logs and checked VPN status

Describe the enhancement request
A clear and concise description of your enhancement request.

When some Linux clients connect this server with IPsec/IKEv2, they can't connect and leaves ANY logs.
I think it is because this: https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/ikev2-howto.md#linux
In that link, in order to connect linux clients to this server, the server side /etc/ipsec.d/ikev2 need to changed: adding authby=rsa-sha1 in conn ikev2-cp section.
But, in docker environment, though I edit the file, the change does not persist after restart of the container.
I think some env config is need to change that config.

Is your enhancement request related to a problem? Please describe.
(If applicable) A clear and concise description of what the problem is.

Additional context
Add any other context about the enhancement request here.

Originally created by @SJ-Y054 on GitHub (Oct 26, 2023). Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/405 **Checklist** - [x] I searched existing [Issues](https://github.com/hwdsl2/docker-ipsec-vpn-server/issues?q=is%3Aissue), and did not find a similar enhancement request - [x] This enhancement request is about the IPsec VPN server Docker image, and not IPsec VPN itself - [x] I read the [README](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README.md) - [x] I read the [Important notes](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README.md#important-notes) - [x] I followed instructions to [configure VPN clients](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README.md#next-steps) - [x] I checked [IKEv1 troubleshooting](https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/clients.md#ikev1-troubleshooting), [IKEv2 troubleshooting](https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/ikev2-howto.md#ikev2-troubleshooting), [enabled logs](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/docs/advanced-usage.md#enable-libreswan-logs) and checked [VPN status](https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/clients.md#check-logs-and-vpn-status) **Describe the enhancement request** A clear and concise description of your enhancement request. When some Linux clients connect this server with IPsec/IKEv2, they can't connect and leaves ANY logs. I think it is because this: https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/ikev2-howto.md#linux In that link, in order to connect linux clients to this server, the server side `/etc/ipsec.d/ikev2` need to changed: adding `authby=rsa-sha1` in `conn ikev2-cp` section. But, in docker environment, though I edit the file, the change does not persist after restart of the container. I think some `env` config is need to change that config. **Is your enhancement request related to a problem? Please describe.** (If applicable) A clear and concise description of what the problem is. **Additional context** Add any other context about the enhancement request here.

kerem closed this issue 2026-03-02 08:01:45 +03:00

kerem commented 2026-03-02 08:01:46 +03:00

Author

Owner

Copy link

@hwdsl2 commented on GitHub (Oct 26, 2023):

@SJ-Y054 Hello! Changes to /etc/ipsec.d/ikev2.conf are normally NOT overwritten on container restart. Please start a Bash shell inside the container, then follow instructions to add authby=rsa-sha1 in conn ikev2-cp section of /etc/ipsec.d/ikev2.conf. After that you can either restart the container or restart the IPsec service (reference).

<!-- gh-comment-id:1781054699 --> @hwdsl2 commented on GitHub (Oct 26, 2023): @SJ-Y054 Hello! Changes to `/etc/ipsec.d/ikev2.conf` are normally NOT overwritten on container restart. Please [start a Bash shell inside the container](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/docs/advanced-usage.md#bash-shell-inside-container), then follow [instructions](https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/ikev2-howto.md#linux) to add `authby=rsa-sha1` in `conn ikev2-cp` section of `/etc/ipsec.d/ikev2.conf`. After that you can either restart the container or restart the IPsec service ([reference](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/docs/advanced-usage.md#enable-libreswan-logs)).

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

No results found.

Labels

Clear labels   

bug

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

question

No labels

bug

pull-request

question

question

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/docker-ipsec-vpn-server#380

No description provided.