Site to Site IPSec VPN with strongSwan and OpenStack VPNaaS (IPsec)
Setup
# install sudo apt-get install -y strongswan # Left (Ubuntu client, behind NAT) Ubuntu Client IP: 212.8.9.10 Ubuntu net: 192.168.178.0/24 # Right (OpenStack VPNaaS) VPN_SERVICE_ID=$(openstack vpn service list -c ID -f value) VPN_SERVICE_IP=$(openstack vpn service show ${VPN_SERVICE_ID} -c external_v4_ip -f value) echo ${VPN_SERVICE_IP} OpenStack VPN IP: 217.50.60.70 OpenStack Net: 10.0.1.0/24
Create OpenStack VPN endpoint
http://www.panticz.de/openstack/vpnaas
/etc/ipsec.secrets
echo ${VPN_SERVICE_IP} : PSK "${PSK}" | sudo tee -a /etc/ipsec.d/ipsec.openstack_vpnaas.secrets
/etc/ipsec.conf