IPsec with OS X 10.10.5 and PFSense 2.2.5
-
I've been given a surprise assignment out of state and would like to set up an IPsec VPN so I can remote access my local network however I have only a couple days left before leaving. I work with an OS X laptop so I need a configuration that works with 10.10.5 (not yet ready to early adopt 10.11). I've played a little with this guide but with only partial success, which doesn't surprise me significantly as it specifies PFSense 2.1.
http://blog.mattbrock.co.uk/setting-up-an-ipsec-vpn-on-pfsense-for-mobile-os-x-and-ios-clients/
I don't mean to be brusk, but I'm a bit under the gun, time-wise. Can anyone point me to a guide that is known to work with the current PFSense 2.2.5 frontend to configure for OS X 10.10 clients? Many thanks and possible beer and pizza provided. ;)
-
The builtin client is junk on OS X, even on El Capitan only 3DES is supported and mine refuses to connect.
I have never tried it but strongSwan does have a client for OS X. Worth a try.
https://wiki.strongswan.org/projects/1/wiki/MacOSX
http://download.strongswan.org/osx -
Thanks for the advice, I can give it a try. Assuming ignoring the built in client and going with strongSwan, what is the correct guide to follow that is current with 2.2.5? I'll admit that the number of guides that are out of date is a bit confusing.
https://doc.pfsense.org/index.php/IKEv2_with_EAP-MSCHAPv2 ?
-
The built in client is fine, except for the UI. You will need to create and install a profile. Look for Apple Configurator.
-
I use Shrewsoft on 10.11.1 because I also use Windows 10 which allowed me to standardized my firewall settings and clients configurations for both platform. Here's 10.11.1 I used as late as 12/02/2015 - http://nubisnovem.com/el-capitan-solution-mac-os-x-10-11-and-shrew-soft-vpn-client/
I added my configurations for Firewall and Client via screenshots here - https://forum.pfsense.org/index.php?topic=102825.0 - this works and is used for both Windows 7-10 and latest MAC OS X