OPNsense Forum
Archive => 16.1 Legacy Series => Topic started by: Urs Rau on June 14, 2016, 01:03:11 pm
-
Friends,
I am currently trying to decide whether to deploy pfSense or opnSense . And for me it comes down to ipsec support for road warriors.
And specifically I am wondeirng if opnsense also supports the setup of windows road warriors using IPSec vpn using only microsoft provided on-board ipsec and vpn client tools? not requiring any third party software for such a ipsec windows client setup.
pfSense seems to support it as can be seen here:
https://doc.pfsense.org/index.php/Mobile_VPN_Client_Availability (https://doc.pfsense.org/index.php/Mobile_VPN_Client_Availability)
But on opnSense the docs only give samples for OSX, iOS and Android,
https://docs.opnsense.org/manual/how-tos/ipsec-road.html?highlight=ipsec (https://docs.opnsense.org/manual/how-tos/ipsec-road.html?highlight=ipsec)
does that mean that windows is not (yet) supported? or is it just a case of a missing sample setup, but it can still be done from a windows (>= ver. 7) road warrior using only MS Windows on-board tools?
-
Windows 7 and up implement IKEv2 natively, which is supported by StrongSwan and it works really well. :)
So your answer is an unconditional "yes", with the docs that we have needing to be updated to reflect this.
Here's the document that describes the possibilities for connecting to Windows 7+ via StrongSwan:
https://wiki.strongswan.org/projects/strongswan/wiki/Windows7
-
Hi Franco,
are there any plans to create some documentation detailing how to set this up with OPNSense?
I'm unable to get a Windows 7 client to connect to the OPNSense and terminate a VPN connection (in future I will want to do Sonicwall > OPNSense, Meraki > OpnSense, but they also support IKEv2 so hopefully they will be more straightforward)
Thanks