Re: [pfSense] Question about OpenVPN Point-to-Multi-Point Setup

2016-06-08 Thread WebDawg
On Jun 8, 2016 1:31 PM, "Vick Khera" wrote: > > On Wed, Jun 8, 2016 at 2:41 PM, Jeremy Bennett < jbenn...@hikitechnology.com> > wrote: > > > If you won't have mobile users, IPSec could be a viable option. > > > > iPhone mobile VPN works great with IPSec, no additional software

Re: [pfSense] Question about OpenVPN Point-to-Multi-Point Setup

2016-06-08 Thread Oliver Hansen
I've had OpenVPN set up with around 20 remote sites for years. Fairly low bandwidth but I prefer the configuration myself. My remote sites don't route all traffic back to HQ ; It all depends on the routes you push to the remote sites. ___ pfSense mailing

Re: [pfSense] Question about OpenVPN Point-to-Multi-Point Setup

2016-06-08 Thread David White
Thanks for your advice. I've only worked with OpenVPN, but I'll do some more research on IPSec. Good thing the hardware that I most like to use for pfSense deployments has an Intel Atom processor that does support AES (

Re: [pfSense] Question about OpenVPN Point-to-Multi-Point Setup

2016-06-08 Thread Vick Khera
On Wed, Jun 8, 2016 at 6:31 AM, David White wrote: > I didn't think I would have to setup a new server / port for each remote > office. I thought that, with the SSL/TLS setup, I could have a single > server and configure it so that clients can see & interact with each

Re: [pfSense] Question about OpenVPN Point-to-Multi-Point Setup

2016-06-08 Thread Watson Kamanga
From: List <list-boun...@lists.pfsense.org> on behalf of David White <dmwhite...@gmail.com> Sent: Wednesday, June 8, 2016 12:31 PM To: pfSense Support and Discussion Mailing List Subject: Re: [pfSense] Question about OpenVPN Point-to-Multi-Point Setup J

Re: [pfSense] Question about OpenVPN Point-to-Multi-Point Setup

2016-06-08 Thread David White
Jeremy & Vick, I'm open to considering an IPSec if that's the best option for this use case. We're talking about 8 locations starting out, with a 9th office opening shortly thereafter, and the possibility of going up to a total of 15-20 sites within 1-2 years after that. When I read

Re: [pfSense] Question about OpenVPN Point-to-Multi-Point Setup

2016-06-07 Thread Vick Khera
On Tue, Jun 7, 2016 at 3:03 PM, David White wrote: > I know that this can be done, but I've never actually done it. Are there > some good resources I can review, besides > https://doc.pfsense.org/index.php/OpenVPN_Site_To_Site > > ? For branch offices, > If you can manage

Re: [pfSense] Question about OpenVPN Point-to-Multi-Point Setup

2016-06-07 Thread Jeremy Bennett
David, I am by no means an expert, but am piping up to speak to the quality of the documentation. Just follow the OpenVPN site to site docs, and you should be good. The tricky bit for me was realizing that the OpenVPN tunnels rely on their own IP space, independent of whatever your regular