Text only | Text with Images

OPNsense Forum

Archive => 23.7 Legacy Series => Topic started by: whatever on November 29, 2023, 12:19:30 AM

Title: New IPsec Connections setup for eap-tls
Post by: whatever on November 29, 2023, 12:19:30 AM
Hello,

Has anyone managed to configure an IPsec tunnel using eap-tls in the new "Connections" tab? There is no tutorial for this setup in the docs, only a legacy example using the old UI. I've tried adapting the tutorial for eap-mschapv2 that exists for the Connections tab to use eap-tls but it fails to connect, always.

I'm wondering if it's supported at this time.

Thanks.
Title: Re: New IPsec Connections setup for eap-tls
Post by: Monviech (Cedrik) on November 29, 2023, 08:56:59 AM
If you could post the ipsec logs from both sides we could see what exactly fails. Without an error message it's hard to guess. It's really important to have the logs of both sides, since IPsec is hard to troubleshoot with only the logs from one side.

Opnsense:
/var/log/ipsec/

Other device or Firewall:
- wherever the logs are written to
Title: Re: New IPsec Connections setup for eap-tls
Post by: Tom221 on January 07, 2024, 12:44:20 PM
Same here, but I was overwhelmed with the many options without any tutorial. Is the tutorial for the new "Connections" tab being extended for EAP-TLS in the near future?
Text only | Text with Images