4. [Solved] Mobile Ipsec to Windows has no gateway

[Solved] Mobile Ipsec to Windows has no gateway

  • W

    Never found a solution to this while googling, so I figured I'd put it here for posterity.

    Windows Native IPSec will not create a default gateway to the remote network. To solve this, when I create the connection, I use a powerScript something like:

    # CA cert from pfSense
Import-Certificate .\Netgate+Auto+VPN+CA.crt -CertStoreLocation cert:\LocalMachine\Root
# Be sure you also have a "Server" cert on pfSense that references this cert

# Create VPN Connection.  -SplitTunneling will disable routing from this interface and we need to roll our own.
Add-VpnConnection -Name "myVPN" -ServerAddress "ww.xx.yy.zz" –TunnelType IKEv2 -EncryptionLevel Required -AuthenticationMethod EAP -SplitTunneling –AllUserConnection -RememberCredential

#Create route to remote VPC
Add-VpnConnectionRoute -Name "myVPN" -DestinationPrefix "10.10.0.0/16"

    One problem I could not figure out what how to create the VPN credentials from PowerScript.

    Repeat the Add-VpnConnectionRoute for each subnet specified. I got an error when I used 0.0.0.0/0.

    Hope this helps somebody.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy