Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Inevitable newbie question #001 - IPSEC vs OPEN VPN

    Scheduled Pinned Locked Moved General pfSense Questions
    3 Posts 2 Posters 467 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      Spectrum48k
      last edited by

      It would appear that IPSEC offers much better performance than Open VPN, due to bottlenecks in Open VPN's design, TAP, etc..

      So my provider offers IPSEC, which begs the question, why would I choose Open VPN over IPSEC? Are their limitations to IPSEC?

      For example I want to use routing policy so that certain IP addresses go through VPN and some don't

      Can anyone elaborate please?

      pfSense 2.4.1
      Intel Atom E3845 Quad Core 1.9GHz AES-NI
      Intel Gigabit Ethernet x4
      pico-ITX form factor
      16GB mSATA
      2GB DDR3L

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        Currently, you cannot policy route with IPsec. If you want to send any Internet-bound traffic over IPsec, then all of your Internet-bound traffic must go over IPsec.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • S
          Spectrum48k
          last edited by

          Ah, I see. Thanks for the info.

          pfSense 2.4.1
          Intel Atom E3845 Quad Core 1.9GHz AES-NI
          Intel Gigabit Ethernet x4
          pico-ITX form factor
          16GB mSATA
          2GB DDR3L

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.