<markdown>
# pfSense Site to Site IPSec VPN

## Topology

## Configuration

### Create Phase 1 Tunnel

1. Navigate to VPN > IPSec and click + Add P1

2. Enter a description

3. Key Exchange Version: IKEv2

4. Interface: WAN

5. Remote Gateway: 172.16.1.10

6. Authentication Method: Mutual PSK

7. Pre-Shared Key: Secret

8. Encryption Algorithm: Alogorithm: AES, Key length: 256 bits, Hash: SHA256, DH Group: 14(2048bit)

9. Life Time: 86400

10. Click Save

### Create Phase 2 Tunnel

1. Click + Add P2

2. Enter a description.

3. Mode: Tunnel IPv4

4. Local Network: Type: MPU5

5. Remote Network: Type: Network, Address: 192.168.1.0/24

6. Protocol: ESP

7. Encryption Algorithms: AES 256 bits

8. Hash Algorithsm: SHA256

9. PFS key group: 14 (2048 bit)

10. Life Time: 1800

11. Automatically ping host: 192.168.1.1
</markdown>