OPNsense site2site IPSEC: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
(→Rechts) |
|||
| (3 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt) | |||
| Zeile 2: | Zeile 2: | ||
==Beide Seiten== | ==Beide Seiten== | ||
;Cipher Suits | ;Cipher Suits | ||
| + | *PROTO: IKEv2 | ||
*IKE: aes256-sha256-modp4096 | *IKE: aes256-sha256-modp4096 | ||
*ESP: aes256-sha256-modp4096 | *ESP: aes256-sha256-modp4096 | ||
| Zeile 7: | Zeile 8: | ||
*IKE-LIFETIME: 3h | *IKE-LIFETIME: 3h | ||
*ESP-LIFETIME: 1h | *ESP-LIFETIME: 1h | ||
| + | |||
==Links== | ==Links== | ||
*ID: 192.168.12.26 | *ID: 192.168.12.26 | ||
*VPNGW: 192.168.12.26 | *VPNGW: 192.168.12.26 | ||
*NETZ: 172.26.20.0/22 | *NETZ: 172.26.20.0/22 | ||
| + | ;Firewall | ||
| + | *UDP 192.168.12.34 -> 192.168.12.26:500 - WAN - ALLOW | ||
| + | *ESP 192.168.12.34 -> 192.168.12.26 - WAN - ALLOW | ||
| + | *ANY 172.26.52.0/22 -> 172.26.20.0/22 IPSEC ALLOW | ||
| + | |||
==Rechts== | ==Rechts== | ||
*ID: 192.168.12.34 | *ID: 192.168.12.34 | ||
*VPNGW: 192.168.12.34 | *VPNGW: 192.168.12.34 | ||
*NETZ: 172.26.52.0/22 | *NETZ: 172.26.52.0/22 | ||
| − | + | ;Firewall | |
| − | + | *UDP 192.168.12.20 -> 192.168.12.34:500 - WAN - ALLOW | |
| + | *ESP 192.168.12.26 -> 192.168.12.34 - WAN - ALLOW | ||
| + | *ANY 172.26.20.0/22 -> 172.26.52.0/22 IPSEC ALLOW | ||
=VPN: IPsec: Pre-Shared Keys= | =VPN: IPsec: Pre-Shared Keys= | ||
Aktuelle Version vom 24. Oktober 2024, 10:41 Uhr
VPN Daten
Beide Seiten
- Cipher Suits
- PROTO: IKEv2
- IKE: aes256-sha256-modp4096
- ESP: aes256-sha256-modp4096
- PSK: 123Start$
- IKE-LIFETIME: 3h
- ESP-LIFETIME: 1h
Links
- ID: 192.168.12.26
- VPNGW: 192.168.12.26
- NETZ: 172.26.20.0/22
- Firewall
- UDP 192.168.12.34 -> 192.168.12.26:500 - WAN - ALLOW
- ESP 192.168.12.34 -> 192.168.12.26 - WAN - ALLOW
- ANY 172.26.52.0/22 -> 172.26.20.0/22 IPSEC ALLOW
Rechts
- ID: 192.168.12.34
- VPNGW: 192.168.12.34
- NETZ: 172.26.52.0/22
- Firewall
- UDP 192.168.12.20 -> 192.168.12.34:500 - WAN - ALLOW
- ESP 192.168.12.26 -> 192.168.12.34 - WAN - ALLOW
- ANY 172.26.20.0/22 -> 172.26.52.0/22 IPSEC ALLOW
- VPN
- IPsec
- Pre-Shared Keys
- IPsec
VPN: IPsec: Connections
Enable IPsec
- VPN
- IPsec
- Connections
- IPsec
Add Connection
- VPN
- IPsec
- Connections
- IPsec
Local Authentication
- VPN
- IPsec
- Connections
- Local Authentication
- Connections
- IPsec
Remote Authentication
- VPN
- IPsec
- Connections
- Remote Authentication
- Connections
- IPsec
Children
- VPN
- IPsec
- Connections
- Children
- Connections
- IPsec
VPN: IPsec: Status Overview
VPN: IPsec: Security Policy Database
