# pfSense Site to Site IPSec VPN ## Topology ## Configuration ### Create Phase 1 Tunnel 1. Navigate to VPN > IPSec and click + Add P1 2. Enter a description 3. Key Exchange Version: IKEv2 4. Interface: WAN 5. Remote Gateway: 172.16.1.10 6. Authentication Method: Mutual PSK 7. Pre-Shared Key: Secret 8. Encryption Algorithm: Alogorithm: AES, Key length: 256 bits, Hash: SHA256, DH Group: 14(2048bit) 9. Life Time: 86400 10. Click Save ### Create Phase 2 Tunnel 1. Click + Add P2 2. Enter a description. 3. Mode: Tunnel IPv4 4. Local Network: Type: MPU5 5. Remote Network: Type: Network, Address: 192.168.1.0/24 6. Protocol: ESP 7. Encryption Algorithms: AES 256 bits 8. Hash Algorithsm: SHA256 9. PFS key group: 14 (2048 bit) 10. Life Time: 1800 11. Automatically ping host: 192.168.1.1