Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Virtual private networks
»
Import Private/public key-pair
« previous
next »
Print
Pages: [
1
]
Author
Topic: Import Private/public key-pair (Read 1948 times)
holunde
Newbie
Posts: 16
Karma: 1
Import Private/public key-pair
«
on:
March 29, 2021, 02:18:32 pm »
Moving from pfSense, I guess....
I have quite a lot of RoadWarriors in the field already, though.
Is it possible to "import" a keypair from another system to the OPNSense router, so that I don't have to change public keys on all my clients?
Has anyone tried this?
Logged
juere
Jr. Member
Posts: 91
Karma: 8
Re: Import Private/public key-pair
«
Reply #1 on:
April 06, 2021, 07:04:41 pm »
In OPNSense you can simply enter private key and public key when editing or creating the local wireguard interface.
Only if you dont enter a keyset, a new one will be created.
So "importing" is easy if pfSense gives you access to your keyset and can be done with copy&paste.
The same applies to existing public keys of your roadwarriors, which can be entered when defining them as endpoints.
If you have really many roadwarriors to import, there is an wireguard api
https://docs.opnsense.org/development/api/plugins/wireguard.html
, haven't tried this yet.
Another way might be, to create a sample wireguard configuration, safe the resulting OPNSense config als xml, edit it as needed and do an restore.
Logged
holunde
Newbie
Posts: 16
Karma: 1
Re: Import Private/public key-pair
«
Reply #2 on:
April 07, 2021, 06:31:41 pm »
Thanks for your reply.
Since my question I've had the chance to play with a OpnSense installation and it's handling of keys is indeed as flexible as you point out. So I guess it wont really be a problem.
I'm looking forward to test Wireguard on OpnSense, also the kernel-module.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Virtual private networks
»
Import Private/public key-pair