Jump to content



Photo

Setting up a VPN

pfsense firewall vpn remote

  • Please log in to reply
37 replies to this topic

#1 Lilrich

Lilrich

    Apple Fan-Boi

  • Joined: 31-October 06

Posted 30 July 2012 - 09:31

Hello All,

I am after some help with my PfSense installation and hope that someone can help me out. What i am trying to do is setup a VPN connection to my home network so that when i am away from home i can access some shares that i have setup on one of my servers.

The PfSense: 192.168.33.1
The DHCP Range: 192.168.33.100-200

is there a way that in PfSense i can setup a VPN to allow me to do what i want?

Thanks
Richard


#2 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 93
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 30 July 2012 - 10:13

Yeah what do you want to use pptp, ipsec, l2tp or openvpn - those are the 4 out of the box that you click and setup.

I would suggest openvpn, it runs on 1 port - which can be set to say 443 if need be - this port is normally always open no matter where you located. I use this pretty much daily to get into my network from work.

setitupvpn.png

#3 metro2012

metro2012

    Neowinian

  • Joined: 13-May 12

Posted 30 July 2012 - 10:15

welcome to hell.......at least you have your angel budman to help you :p

(its not that difficult in a normal vpn situation; im just sayin that from another thread...)

#4 OP Lilrich

Lilrich

    Apple Fan-Boi

  • Joined: 31-October 06

Posted 30 July 2012 - 10:16

Excellent, thanks BudMan - will give this a shot when i get home tonight.

@Metro why welcome to hell? Is there something i should know ;)

#5 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 93
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 30 July 2012 - 10:18

metro -- what you were doing is NOT even close to a normal setup!!

#6 metro2012

metro2012

    Neowinian

  • Joined: 13-May 12

Posted 30 July 2012 - 10:19

metro -- what you were doing is NOT even close to a normal setup!!

reason why i mentioned its not that difficult in a normal situation :p cant wait to tell you when we implement it in a real world scenario (probably next week or so)

#7 OP Lilrich

Lilrich

    Apple Fan-Boi

  • Joined: 31-October 06

Posted 30 July 2012 - 17:43

BudMan do you think you can help me set this up? I am rather stuck.

#8 metro2012

metro2012

    Neowinian

  • Joined: 13-May 12

Posted 31 July 2012 - 07:49

@Metro why welcome to hell? Is there something i should know ;)

no.......i was setting up a openvpn server as well and i and budman made almost a 8 page thread. but thats because there were concepts that i did not have clear and because my situation was a bit more complicated. its very easy to set up a simply vpn connection with what you want.

did u look at openvpn's site? i think the best choice is openvpn as its generally well accepted on most platforms (windows, unix, osx, etc)

#9 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 93
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 31 July 2012 - 08:29

Happy to help, where are you stuck?

#10 OP Lilrich

Lilrich

    Apple Fan-Boi

  • Joined: 31-October 06

Posted 31 July 2012 - 08:42

There are lots of options that i am not really comfortable with filling in.

Certificates and IP ranges etc, i am not embaressed to say that i am a little confused by the whole config so a little guidence would be highly welcomed.

#11 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 93
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 31 July 2012 - 09:14

here is mine, if that helps.

Just point out what you have questions on

vpnconfig.png

#12 OP Lilrich

Lilrich

    Apple Fan-Boi

  • Joined: 31-October 06

Posted 31 July 2012 - 09:18

Budman, is that the only page that i need to fill in? I have been reading guides online that mention generating Certificates and Adding users etc then exporting bits and bobs to import into your client.

Thanks for that thought answers some of my questions :) What is that TLS Auth box, where did you get the data to go into there?

#13 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 93
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 31 July 2012 - 09:29

yes you have to create a cert for the user, under usermanager - well to be honest you don't you could setup your open as user auth, or peer to peer shared key. But I would suggest creating cert.

As to what to export for the user, grab the "OpenVPN Client Export Utility" package

exportopenvpn1.png

As to "Enable authentication of TLS packets. " It will create that cert for you once you click the box.

#14 OP Lilrich

Lilrich

    Apple Fan-Boi

  • Joined: 31-October 06

Posted 31 July 2012 - 10:01

Okay i will give this a go, going to be connecting to the VPN from a mac so i hope it will work.

#15 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 93
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 31 July 2012 - 12:09

yeah no reason why it shouldn't mac runs openvpn client, then your good.

Please make sure your OUTSIDE your network!! Don't try connecting from inside your own network.