NordVPN and ipsec config

Started by Perun, May 31, 2019, 11:11:13 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
May 31, 2019, 11:11:13 AM
Hi

it is possible to setup NordVPN with ipsec on opnsense via WebUI?

The recommended settings are:

conn NordVPN
  keyexchange=ikev2
  dpdaction=clear
  dpddelay=300s
  eap_identity="USERNAME"
  leftauth=eap-mschapv2
  left=%defaultroute
  leftsourceip=%config
  right=SERVER
  rightauth=pubkey
  rightsubnet=0.0.0.0/0
  rightid=%SERVER
  rightca=/etc/ipsec.d/cacerts/NordVPN.pem
  type=tunnel
  auto=add

https://nordvpn.com/de/tutorials/linux/ikev2ipsec/

If it isnt possible over WebUI, where should I put the config?

(I know NordVPN works with OpenVPN but dont want OpenVPN)

TiA
Greetz
June 03, 2019, 10:05:37 AM #1
No one an answer for me?
June 06, 2019, 08:35:34 AM #2
I think:

eap-mschapv2 auth as client on opnsense is the problem... I cant find these auth setting if I want to make a s2s connection... Its only avaiable on the mobile vpn connections...

Any hint?
June 13, 2019, 10:34:45 PM #3
You could try to add your NordVPN IPSec conf in:
/usr/local/etc/ipsec.opnsense.d/nordvpn.conf

No waranty. Be careful with routing.

August 20, 2019, 04:35:41 PM #4
Perun,

did you get this to work? I'm also interested in this. Thanks.
August 22, 2019, 10:42:08 AM #5
Hi,

that works for IPSec Phase1 and Phase2 also, but
the resulting tun interface is not shown in WebGUI, neither in Firewall - Rules, nor in Interfaces ...

So, how can routing / NAT be manually configured until WebGUI handles this ?
February 11, 2023, 10:59:46 AM #6
Good day to all,

Release 23 provides a UI chapter to configure ipsec.

Good luck!
Best
Print
Go Up Pages1
User actions