IPSec tunnel settings to connections manual migration

[pixielark]

from the 23.7 release note I see

IPsec "tunnel settings" GUI is now deprecated and manual migration to the "connections" GUI is recommended.  An appropriate EoL announcement will be made next year.

and I see 0 documentation anywhere (not just official wiki, but the entire internet) about how to setup road warriors with the new connections GUI.

The old one is at https://docs.opnsense.org/manual/how-tos/ipsec-rw.html, detailed example at https://docs.opnsense.org/manual/how-tos/ipsec-rw-srv-mschapv2.html
can OPNSense at least have the doc updated with new examples before kill the old UI? This is very surprising...

[Patrick M. Hausen]

Similarly many cipher suites are not supported in the new UI. Sorry, we have corporate partners with AES256-CBC and DH Group 5 and these tunnels must continue to work at all costs.

[franco]

We're collecting improvements for connections here https://github.com/opnsense/core/issues/6279 and I expect movement on this as soon as people try to migrate their setups... which is about now..

FWIW, the tunnel settings are going to be there for another year for sure, but now we'd rather only improve the connections bits.


Cheers,
Franco

[pixielark]

We're collecting improvements for connections here https://github.com/opnsense/core/issues/6279 and I expect movement on this as soon as people try to migrate their setups... which is about now..

FWIW, the tunnel settings are going to be there for another year for sure, but now we'd rather only improve the connections bits.


Cheers,
Franco

any possibility to update the road warriors wiki? If you want people to migrate now that would be the first step....

[franco]

It's free for all at the moment. These additional how-tows were originally submitted by Michael in 2018 and we focused on providing both tunnel and connection setup in the main IPsec section for the time being.


Cheers,
Franco