Different Firewall rules for each IPsec "Roadwarrior"

Started by mrrobot, March 29, 2017, 09:23:58 PM

Previous topic - Next topic
Hello to everyone,

i just set up my first OPNsense VM (OPNsense 17.1-amd64, FreeBSD 11.0-RELEASE-p7) with two interfaces (WAN/LAN) for my Internet-Access.

Currently i`m trying to migrate my VPN-Tunnels (IPsec, C2L/Roadwarrior; Android,Shrew, iOS) to OPNsense. On my current productive Router it is possible to create firewall rules for each tunnel so that not each Client has the same access rights.

Is this even possible on OPNsense or is it only possible to create one global Firewall set for all IPsec clients?

Thank you for your help

Btw: Is there any reason that i can access my network over VPN (only ICMP tested so far) if my only IPsec rule is set to

IPv4*  *  *  *  *  *

but if it is set to

IPv4*  IPsec net  *  *  *  *  or IPv4*  10.0.0.1  *  *  *  * it is not working (10.0.0.1 is the first CLient IP which my Roadwarrior got assigned while testing)