Configuring the IPsec VPN service – client/server
In this recipe, we will configure the IPsec service to allow multiple clients to connect to our network.
In the previous recipe, we showed how IPsec can be used to create a VPN tunnel between two pfSense firewalls. In this recipe, we will demonstrate how IPsec can be used for a different purpose. Sometimes, we want to allow individual clients to access our network over the internet. Fortunately, pfSense enables us to do this, via IPsec mobile client configuration. In order to configure mobile clients, we must set up individual user accounts, and as was the case when we were configuring Captive Portal in pfSense, the User Manager provides a means for adding user accounts.
How to do it...
- Navigate to
VPN | IPsec
. - Click on the
Mobile Clients
tab. - Check the
Enable IPsec Mobile Client Support
checkbox:
- In the
User Authentication
listbox, selectLocal Database
. - In the
Group Authentication
drop-down menu, selectsystem
. - Check the
Provide a virtual IP address...