Hi !
I'm new to pfSense, coming from a couple years managing IPCop on a
dozen sites, following hand-installed Redhat 7.3 firewalls. So far I
love it and am rolling it in production on a first site this week.
BRAVO !
I do have a first question though. I'm using 1.2 RC2.
Is there a how-to somewhere on how to connect pfsense and IPCop
through IPSEC using certificates ? I will eventually migrate all the
sites to pfSense I'm sure but in the meantime I need to inter-operate.
IPCop's certificates management (pem files you never open) and IPSEC
VPN through certificates is so easy that I've taken bad habits ...
===
here's the process to connect two IPCops :
go to machine A,
- click on generate keys if it hasn't already been done
- download CA Certificate and Host Certificate for A.
go to machine B,
- click on generate keys if it hasn't already been done
- download CA Certificate and Host Certificate for B.
- upload CA Certificate from A
- click create net-to-net VPN, select "certificate" and upload host
certificate from A.
go back to A
- upload CA certificate from B
- click create net-to-net VPN, select "certificate" and upload host
certificate from B
make sure the vpn indicator turns green and voila.
The only info asked when creating the vpns are local interface, local
subnet to share, remote host and remote subnet.
===
all the IKE and encryption settings are hidden in an "advanced" panel
which is not needed by default and is used for interoperability.
I'm a bit confused with all the options present in pfSense ... Is
there a way i can upload the CA and host pem files from my IPCop "B",
find the local CA and Host pems from my pfSense "A" and exchange them
in much the same way ?
Thanks !!!
Franck Horlaville
IT Manager
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
