Any way to connect a Mac as mobile IPsec client?
-
This is I guess an FAQ, only I wasn't able to find any working instructions in the wiki and forum:
How can I connect my Mac (OS X 10.9 / Mavericks) to a pfSense (2.2.6) with IPsec?
I have setup IPsec in pfSense according to this description: https://doc.pfsense.org/index.php/IPsec_Road_Warrior/Mobile_Client_How-To (apart from settings for 'Policy Generation' and 'Proposal Checking' which seem to be missing in 2.2.6).
A description for a setup of Mac OS X as client is not given here however. I tried to setup the Cisco VPN Client but was not able to connect. Is this possible at all?
-flo-
-
Did you try this setup and download the strong swan client?
https://doc.pfsense.org/index.php/IKEv2_with_EAP-MSCHAPv2#Set_up_Mobile_IPsec_for_IKEv2.2BEAP-MSCHAPv2
-
Thank you for this link! I didn't know this yet. The description explains the setup based on the integrated VPN client and the VPN Type IKEv2 required for this setup. This seems to be available in OS X 10.11.
In OS X Mavericks (10.9) IKEv2 is not available so this is why I would need the strong swan client?
I was however able to get this up and running by myself yesterday after hours based on the description I quoted myself. The setup of my Mac with the built in client was actually not difficult as there are only very few entry fields.
PEBKAC: I missed an important information in the description ('Note that for xauth, the password used is the password for the user, not the "IPsec Pre-Shared Key" field.'). ::) Once I got this right everything was working fine. Now I can confirm that this works out of the box with OS X Mavericks.
-flo-
-
Could not be wrong to read something about here once more again if there will be any issues coming up.
IPsec VPN Einwahl pfSense mit Apple iPhone und iPad sowie Mac OS-X onboard IPsec VPN Client: -
Yes, this page is a valuable resource also for other scenarios. It was the first reliable source I came across stating that the built in client from OS X should be working in this setup at all.