生まれ変わる - umarekawaru

User Tools

Site Tools

Trace:
technical:ipsec:pfsense

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		Previous revision
technical:ipsec:pfsense [2024/05/12 09:39] – created jctechnical:ipsec:pfsense [2024/06/19 21:11] (current) jc
Line 1: Line 1:
 <markdown> <markdown>
-RouterOS Site to Site VPN+pfSense Site to Site IPSec VPN
  
 ## Topology ## Topology
Line 6: Line 6:
 ## Configuration ## Configuration
  
-1. Create Phase 1 Tunnel+### Create Phase 1 Tunnel
  
-a. Navigate to VPN IPSec and click + Add P1+1. Navigate to VPN IPSec and click + Add P1
  
-b. Enter a description+2. Enter a description
  
-c. Key Exchange Version: IKEv2+3. Key Exchange Version: IKEv2
  
-d. Interface: WAN+4. Interface: WAN
  
-e. Remote Gateway: 172.16.1.10+5. Remote Gateway: 172.16.1.10
  
-f. Authentication Method: Mutual PSK+6. Authentication Method: Mutual PSK
  
-g. Pre-Shared Key: Secret+7. Pre-Shared Key: Secret
  
-h. Encryption Algorithm: Alogorithm: AES, Key length: 256 bits, Hash: SHA256, DH Group: 14(2048bit)+8. Encryption Algorithm: Alogorithm: AES, Key length: 256 bits, Hash: SHA256, DH Group: 14(2048bit)
  
-i. Life Time: 86400+9. Life Time: 86400
  
-j. Click Save+10. Click Save
  
-2. Create Phase 2 Tunnel+### Create Phase 2 Tunnel
  
-a. Click + Add P2+1. Click + Add P2
  
-b. Enter a description.+2. Enter a description.
  
-c. Mode: Tunnel IPv4+3. Mode: Tunnel IPv4
  
-d. Local Network: Type: MPU5+4. Local Network: Type: MPU5
  
-e. Remote Network: Type: Network, Address: 192.168.1.0/24+5. Remote Network: Type: Network, Address: 192.168.1.0/24
  
-f. Protocol: ESP+6. Protocol: ESP 
 + 
 +7. Encryption Algorithms: AES 256 bits 
 + 
 +8. Hash Algorithsm: SHA256 
 + 
 +9. PFS key group: 14 (2048 bit) 
 + 
 +10. Life Time: 1800 
 + 
 +11. Automatically ping host: 192.168.1.1
 </markdown> </markdown>
technical/ipsec/pfsense.1715521196.txt.gz · Last modified: 2024/05/12 09:39 by jc

Page Tools