Skip to content

pfSense

IPSec VPN Configuration

  • IKE Endpoint Configuration
    • Internet Protocol: IPv4
    • Remote Gateway:
  • Phase 1 Proposal (Authentication):
    • Authentication Method: Mutual PSK
    • My Identifier: My IP address
    • Peer identifier: Peer IP
    • Pre-Shared Key: As advised
  • Phase 1 Proposal (Encryption Algorithm)
    • Algorithm: AES256-GCM
    • Key length: 128bit
    • Hash: SH384
    • DH Group: 15
  • Expiration and Replacement:
    • Life Time: 86400
  • Phase 2 Entry
    • Mode: Tunnel IPv4
    • Local Network:
    • Remote Network: As advised
    • Phase 2 Proposal(SA/Key)
      • Protocol: ESP
      • Encryption Algorithms: AES256-GCM; Auto key size
      • PFS key group: 15
    • Expiration and Replacement
      • Life time: 28800

Firewall Rules

From: Desired source subnets: To: 10.227.0.10 TCP/UDP 514