OPNsense Forum

English Forums => General Discussion => Topic started by: svendsen on January 25, 2019, 01:20:48 pm

Title: IPsec with xauth?
Post by: svendsen on January 25, 2019, 01:20:48 pm

Hi,

I'd like to create a site-to-site VPN to my workplace. "Unfortunately" they use xauth in their phase-1.
I cannot find a place to activate/set xauth user/pass in OPNSense. Does it mean that it's not possible - or is there a workaround? (other than choosing alternatives) :-)

THANKS!!

Title: Re: IPsec with xauth?
Post by: rudiservo on March 07, 2019, 02:05:01 pm

Having the same problem has well.

The issue here is that xauth means probably a cisco VPN,

On OpnSense you can be a mobile server but I dont thing you can be a mobile client unless you hack the router and create a new connection of your own via SSH, that might get overwritten everytime you make a change to the ipsec on the GUI.

Also that means you need NAT, not BINAT just NAT, with the mobile connection being a new gateway or probably simulating a new NIC, and that will involve more stuff to hack that I am confortable with doing on the router ATM.

Title: Re: IPsec with xauth?
Post by: rudiservo on March 07, 2019, 02:11:30 pm

Has for the topic the real topic should be Opnsense box has ipsec mobile client to remote site.