starred/docker-ipsec-vpn-server
1
0
Fork 0
mirror of https://github.com/hwdsl2/docker-ipsec-vpn-server.git synced 2026-04-26 01:55:53 +03:00
Code Issues Projects Releases Packages Wiki Activity

[GH-ISSUE #460] Cannot disable IKEv2 in Docker Environment #430

New issue
Closed
opened 2026-03-02 08:18:53 +03:00 by kerem · 2 comments
kerem commented 2026-03-02 08:18:53 +03:00
Owner
Copy link

Originally created by @hartundweich on GitHub (Nov 28, 2024).
Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/460

Describe the issue
I want to disable the IKEv2 feature as it is not needed in my environment.
I'm running on docker and deleteed already all files in the mounted docker volume and removed IKEv2 by running
ikev2.sh --removeikev2
Environment variable VPN_SKIP_IKEV2 is set to yes
Restarting the docker image is still showing in logs
IKEv2 setup successful. Details for IKEv2 mode:
And certificates are generated

To Reproduce
Always

Expected behavior
IKEv2 should be disabled permanent

Logs

Setting up IKEv2. This may take a few moments...

IKEv2 setup successful. Details for IKEv2 mode:
VPN server address: vpn.hartundweich.at
VPN client name: vpnclient
Client configuration is available inside the
Docker container at:
/etc/ipsec.d/vpnclient.p12 (for Windows & Linux)
/etc/ipsec.d/vpnclient.sswan (for Android)
/etc/ipsec.d/vpnclient.mobileconfig (for iOS & macOS)
Next steps: Configure IKEv2 clients. See:
https://vpnsetup.net/clients2

Server (please complete the following information)

  • Docker host OS: Gentoo Lilnux

Client (please complete the following information)
n/a

Additional context
n/a

Originally created by @hartundweich on GitHub (Nov 28, 2024). Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/460 **Describe the issue** I want to disable the IKEv2 feature as it is not needed in my environment. I'm running on docker and deleteed already all files in the mounted docker volume and removed IKEv2 by running ikev2.sh --removeikev2 Environment variable VPN_SKIP_IKEV2 is set to yes Restarting the docker image is still showing in logs IKEv2 setup successful. Details for IKEv2 mode: And certificates are generated **To Reproduce** Always **Expected behavior** IKEv2 should be disabled permanent **Logs** Setting up IKEv2. This may take a few moments... IKEv2 setup successful. Details for IKEv2 mode: VPN server address: vpn.hartundweich.at VPN client name: vpnclient Client configuration is available inside the Docker container at: /etc/ipsec.d/vpnclient.p12 (for Windows & Linux) /etc/ipsec.d/vpnclient.sswan (for Android) /etc/ipsec.d/vpnclient.mobileconfig (for iOS & macOS) Next steps: Configure IKEv2 clients. See: https://vpnsetup.net/clients2 **Server (please complete the following information)** - Docker host OS: Gentoo Lilnux **Client (please complete the following information)** n/a **Additional context** n/a
kerem closed this issue 2026-03-02 08:18:53 +03:00
kerem commented 2026-03-02 08:18:54 +03:00
Author
Owner
Copy link

@hwdsl2 commented on GitHub (Nov 28, 2024):

@hartundweich Hello! For your use case, the VPN_SKIP_IKEV2 variable is only applicable to hwdsl2/setup-ipsec-vpn, but not this project. The correct way to disable IKEv2 is to NOT mount the ikev2-vpn-data volume when creating the Docker container. For more details, see Start the IPsec VPN server. Quote:

It is recommended to enable IKEv2 when using this image. However, if you prefer not to enable IKEv2 and use only the IPsec/L2TP and IPsec/XAuth ("Cisco IPsec") modes to connect to the VPN, remove the first -v option from the docker run command above.

Alternatively, you may also build a customized Docker image. See "Build from source code" in project README.

<!-- gh-comment-id:2506325789 --> @hwdsl2 commented on GitHub (Nov 28, 2024): @hartundweich Hello! For your use case, the `VPN_SKIP_IKEV2` variable is only applicable to [hwdsl2/setup-ipsec-vpn](https://github.com/hwdsl2/setup-ipsec-vpn), but not this project. The correct way to disable IKEv2 is to NOT mount the `ikev2-vpn-data` volume when creating the Docker container. For more details, see [Start the IPsec VPN server](https://github.com/hwdsl2/docker-ipsec-vpn-server#start-the-ipsec-vpn-server). Quote: > It is recommended to enable IKEv2 when using this image. However, if you prefer not to enable IKEv2 and use only the IPsec/L2TP and IPsec/XAuth ("Cisco IPsec") modes to connect to the VPN, remove the first -v option from the docker run command above. Alternatively, you may also build a customized Docker image. See "Build from source code" in project README.
kerem commented 2026-03-02 08:18:54 +03:00
Author
Owner
Copy link

@hartundweich commented on GitHub (Nov 28, 2024):

OK sorry my fault - i thought I checked everything twice and was sure to have everything searched for a solution.
Thank you for your support

<!-- gh-comment-id:2506395469 --> @hartundweich commented on GitHub (Nov 28, 2024): OK sorry my fault - i thought I checked everything twice and was sure to have everything searched for a solution. Thank you for your support
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
No results found.
Labels
Clear labels   
bug

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question
No labels
bug
pull-request
question
question
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/docker-ipsec-vpn-server#430
No description provided.