OPNsense Forum
English Forums => General Discussion => Topic started by: Perun on May 31, 2019, 11:11:13 am
-
Hi
it is possible to setup NordVPN with ipsec on opnsense via WebUI?
The recommended settings are:
conn NordVPN
keyexchange=ikev2
dpdaction=clear
dpddelay=300s
eap_identity="USERNAME"
leftauth=eap-mschapv2
left=%defaultroute
leftsourceip=%config
right=SERVER
rightauth=pubkey
rightsubnet=0.0.0.0/0
rightid=%SERVER
rightca=/etc/ipsec.d/cacerts/NordVPN.pem
type=tunnel
auto=add
https://nordvpn.com/de/tutorials/linux/ikev2ipsec/
If it isnt possible over WebUI, where should I put the config?
(I know NordVPN works with OpenVPN but dont want OpenVPN)
TiA
Greetz
-
No one an answer for me?
-
I think:
eap-mschapv2 auth as client on opnsense is the problem... I cant find these auth setting if I want to make a s2s connection... Its only avaiable on the mobile vpn connections...
Any hint?
-
You could try to add your NordVPN IPSec conf in:
/usr/local/etc/ipsec.opnsense.d/nordvpn.conf
No waranty. Be careful with routing.
-
Perun,
did you get this to work? I'm also interested in this. Thanks.
-
Hi,
that works for IPSec Phase1 and Phase2 also, but
the resulting tun interface is not shown in WebGUI, neither in Firewall - Rules, nor in Interfaces ...
So, how can routing / NAT be manually configured until WebGUI handles this ?
-
Good day to all,
Release 23 provides a UI chapter to configure ipsec.
Good luck!
Best