Migration IPSec configuration from Draytek Vigor to OpnSense

Started by kenobits, December 23, 2020, 03:21:28 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
December 23, 2020, 03:21:28 PM
Hi all, hope you're doing good.

I've got a Problem and can't figure out why this doenst work, maybe you guys have an idea.

We are replacing our old firewall (vigor) to a new one (opnsense) and want to migrate the IPSec-Connections on the old fw to the new one. Therefor I tried to "copy" the configs onto the OpnSense.
After finishing the configuration we changed the WAN-IP Adress from the OpnSense to the WAN-Adress of the old Firewall (shut down the old-Firewall first of course) and tried to connect. While some IpSec connections could be established other couldnt so we had to roll back to the old Firewall - and I can't figure out why some didn't work.
I've screenshoted one config that didn't work out  - maybe you guys have an idea


Following the screenshots of the OpnSense config and the one I tried to copy
December 23, 2020, 03:27:09 PM #1
the one I tried to copy:
December 23, 2020, 07:45:15 PM #2
Interface LAN in Phase 1 is on purpose?
,,The S in IoT stands for Security!" :)
December 29, 2020, 01:43:14 PM #3
Actually not - when I disabled the WAN-IF it set it to LAN automatically (as mentioned above we tried the copied connections and as they didn't work we went back to the old setup so we had to disable the WAN-IF with the IP the old Firewall had/now again has)
You can ignore for now that it's set to LAN, if we try to connect again I'll set it to WAN
Print
Go Up Pages1
User actions