Comments (2)
@lewtopia Hello! Apple devices require .mobileconfig
files to have a password when importing. The password cannot be blank. As a result, this project handles this password in the following way. There are two cases:
-
If
VPN_PROTECT_CONFIG
is NOT set toyes
(or not set), a random password is generated to protect the.mobileconfig
file, and that password is embedded in the.mobileconfig
file itself. Apple devices will retrieve the password from the file automatically when importing, and will not ask the user for the password during import. In your issue description, you are probably referring to this password. It is the password used when encrypting the certificate in the file. -
If
VPN_PROTECT_CONFIG
is set toyes
, a random password is generated to protect the.mobileconfig
files, but the password is NOT embedded in the.mobileconfig
files. To retrieve the generated password, first open a Bash shell inside the container, then runcat /etc/ipsec.d/.vpnconfig
. If this file does not exist, this case (2) does not apply to you, see (1) above instead.Note that if
VPN_PROTECT_CONFIG
was previously set toyes
, changing it tono
at a later time will not remove the password. If you want to remove the password for newly generated client configuration files, remove/etc/ipsec.d/.vpnconfig
inside the container, then runsudo ikev2.sh
to re-create the client configuration.
from docker-ipsec-vpn-server.
I think I found the problem: see if your mirror version is old, and if so, update it to the latest version. Because of Aliyun's image warehouse, I pulled the image from two years ago that caused the same problem as you. Today, I changed the image warehouse, and the updated version was solved.
from docker-ipsec-vpn-server.
Related Issues (20)
- 您好,极空间的nas赋予ipsec vpn net_admin权限,会导致docker中使用桥接容器内的网络不通,只有改为host模式才可以访问 HOT 1
- IKEv2模式会自动启用密码保护 HOT 1
- 没公网ipv4,只有公网ipv6要如何设置 HOT 1
- add functionality to script HOT 1
- Cannot connect using IKEv2 HOT 2
- 是不能直接在局域网内部署吗,必需得连接公网? HOT 1
- Conceal sensitive data in container logs HOT 1
- authentication failed: peer attempted PSK authentication but we want rsasig HOT 1
- 能ping通服务器同网段其他主机,但没法http访问 HOT 9
- IKEv 客户端每次创建都有默认密码,使用VPN_PROTECT_CONFIG=no 配置不生效 HOT 3
- Windows10 连接失败 HOT 1
- docker 运行一段时间后,就连接不上了,需要重启 HOT 1
- 初次配置连接不上 HOT 3
- 我把容器500、4500端口分别映射到宿主机4501,4500端口,防火墙开了对应的两个udp端口 HOT 1
- client not accessing remote network HOT 1
- [Question] combination with pi-hole DNS Server HOT 2
- docker部署的ipsec 客户端支持h3c路由器吗 HOT 3
- 能够连接上VPN但是无法访问内网地址或者外网地址 HOT 1
- failed to start vpn HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from docker-ipsec-vpn-server.