solved - [IPSec] How to set up Roadwarrior with "dynamic" mobile access

Started by andre2000, February 14, 2020, 12:32:13 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 14, 2020, 12:32:13 PM Last Edit: February 16, 2020, 02:31:30 PM by andre2000
Hi all,

I've tried several tutorials to get IPSec up and running, with different outcomes of failure  ;D . I am also using OpenVPN, but would like to improve the way I am using VPN. Basically, I want my homelab services (home automation, bitwarden to name the most important) to be accessible "on demand" without having to connect manually. Or in other words, as soon as I am connecting to something that ends with ".home" which is my local domain, this specific traffic should go through an IPSec tunnel. I think there is a name for this, but I am not sure. As far as I know this is not possible with openVPN, but I'd be happy to learn better.

The problem for me with most of the tutorials is that they are describing older versions of OPNsense, which have sometimes different options to set. And because I am not getting further, I have no idea if the "on demand" needs a specific setup or would be there by default.

I am be very thankful for any hints, general explaination or suggestions for tutorials you were successful with.

thanks in advance!
February 16, 2020, 02:29:19 PM #1
So, the "On Demand" part has to be set up in the profile created with Apple Configurator. Also, current iOS doesn't seem to accept RSA keys in both phases, you've got to choose one of group 19 to 21.
Print
Go Up Pages1
User actions