Site2Site VPN with gateway group on the client side
-
Hi, I am trying to choose the best alternative for a site2site VPN (pfSense both for the clients and the server) where the client-sides uses a gateway group with two gateways in the group. So, the questions are:
-Which VPN technology works best (OpenVPN or IPSec) where the server-side can support multiple peer addresses?
-Can this be done without using DynDNS?
-There will be several clients connecting to the VPN-server (all pfSense) that will be allowed to access different subnets/IPs. Will OpenVPN or IPSec be the easiest to configure?
-If OpenVPN site2site is the best alternative, is PKI/SSL a better alternative than static key?
Thanks for any advice/tips!
Cheers,
Jarle -
Jimp did great video hangouts on Site-to-Site VPNs, comparing IPsec and OpenVPN. Check out https://www.netgate.com/resources/videos/site-to-site-vpns-on-pfsense.html
MultiWAN and OpenVPN is covered here https://www.netgate.com/resources/videos/advanced-openvpn-on-pfsense-24.html-Rico
-
Perfect, thanks :-)