OPNsense Forum

English Forums => General Discussion => Topic started by: Perun on May 31, 2019, 11:11:13 am

Title: NordVPN and ipsec config
Post by: Perun on May 31, 2019, 11:11:13 am

Hi

it is possible to setup NordVPN with ipsec on opnsense via WebUI?

The recommended settings are:

conn NordVPN
  keyexchange=ikev2
  dpdaction=clear
  dpddelay=300s
  eap_identity="USERNAME"
  leftauth=eap-mschapv2
  left=%defaultroute
  leftsourceip=%config
  right=SERVER
  rightauth=pubkey
  rightsubnet=0.0.0.0/0
  rightid=%SERVER
  rightca=/etc/ipsec.d/cacerts/NordVPN.pem
  type=tunnel
  auto=add

https://nordvpn.com/de/tutorials/linux/ikev2ipsec/

If it isnt possible over WebUI, where should I put the config?

(I know NordVPN works with OpenVPN but dont want OpenVPN)

TiA
Greetz

Title: Re: NordVPN and ipsec config
Post by: Perun on June 03, 2019, 10:05:37 am

No one an answer for me?

Title: Re: NordVPN and ipsec config
Post by: Perun on June 06, 2019, 08:35:34 am

I think:

eap-mschapv2 auth as client on opnsense is the problem... I cant find these auth setting if I want to make a s2s connection... Its only avaiable on the mobile vpn connections...

Any hint?

Title: Re: NordVPN and ipsec config
Post by: opnip on June 13, 2019, 10:34:45 pm

You could try to add your NordVPN IPSec conf in:
/usr/local/etc/ipsec.opnsense.d/nordvpn.conf

No waranty. Be careful with routing.

Title: Re: NordVPN and ipsec config
Post by: tusc on August 20, 2019, 04:35:41 pm

Perun,

did you get this to work? I'm also interested in this. Thanks.

Title: Re: NordVPN and ipsec config
Post by: neobiker on August 22, 2019, 10:42:08 am

Hi,

that works for IPSec Phase1 and Phase2 also, but
the resulting tun interface is not shown in WebGUI, neither in Firewall - Rules, nor in Interfaces ...

So, how can routing / NAT be manually configured until WebGUI handles this ?

Title: Re: NordVPN and ipsec config
Post by: circlecreek on February 11, 2023, 10:59:46 am

Good day to all,

Release 23 provides a UI chapter to configure ipsec.

Good luck!
Best