Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Virtual private networks
»
Migration IPSec configuration from Draytek Vigor to OpnSense
« previous
next »
Print
Pages: [
1
]
Author
Topic: Migration IPSec configuration from Draytek Vigor to OpnSense (Read 1965 times)
kenobits
Newbie
Posts: 46
Karma: 0
Migration IPSec configuration from Draytek Vigor to OpnSense
«
on:
December 23, 2020, 03:21:28 pm »
Hi all, hope you're doing good.
I've got a Problem and can't figure out why this doenst work, maybe you guys have an idea.
We are replacing our old firewall (vigor) to a new one (opnsense) and want to migrate the IPSec-Connections on the old fw to the new one. Therefor I tried to "copy" the configs onto the OpnSense.
After finishing the configuration we changed the WAN-IP Adress from the OpnSense to the WAN-Adress of the old Firewall (shut down the old-Firewall first of course) and tried to connect. While some IpSec connections could be established other couldnt so we had to roll back to the old Firewall - and I can't figure out why some didn't work.
I've screenshoted one config that didn't work out - maybe you guys have an idea
Following the screenshots of the OpnSense config and the one I tried to copy
Logged
kenobits
Newbie
Posts: 46
Karma: 0
Re: Migration IPSec configuration from Draytek Vigor to OpnSense
«
Reply #1 on:
December 23, 2020, 03:27:09 pm »
the one I tried to copy:
Logged
Gauss23
Hero Member
Posts: 766
Karma: 39
Re: Migration IPSec configuration from Draytek Vigor to OpnSense
«
Reply #2 on:
December 23, 2020, 07:45:15 pm »
Interface LAN in Phase 1 is on purpose?
Logged
„The S in IoT stands for Security!“
kenobits
Newbie
Posts: 46
Karma: 0
Re: Migration IPSec configuration from Draytek Vigor to OpnSense
«
Reply #3 on:
December 29, 2020, 01:43:14 pm »
Actually not - when I disabled the WAN-IF it set it to LAN automatically (as mentioned above we tried the copied connections and as they didn't work we went back to the old setup so we had to disable the WAN-IF with the IP the old Firewall had/now again has)
You can ignore for now that it's set to LAN, if we try to connect again I'll set it to WAN
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Virtual private networks
»
Migration IPSec configuration from Draytek Vigor to OpnSense