• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

IPSEC mobile AUTHENTICATE

Scheduled Pinned Locked Moved IPsec
3 Posts 1 Posters 439 Views 1 Watching
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • Y Offline
    Yazur
    last edited by Yazur Mar 27, 2020, 1:12 PM Mar 24, 2020, 4:20 PM

    This post is deleted!
    1 Reply Last reply Reply Quote 0
    • Y Offline
      Yazur
      last edited by Mar 27, 2020, 10:13 AM

      Further information :

      I had misunderstood the term "Local Database", I thought it was equal to "pre-shared keys" when it was not at all.

      So I tried to connect with a local user at pfsense and it doesn't work either.

      Only pre-shared key authentication works.

      On the other hand when I try to authenticate in the "Diagnostics --> Authentication" tab it works well for both methods "Local and Radius".

      There is also another notion that I think I misunderstood:

      In the creation of the pfsense certificate I mention in SAN the DNS name of my pfsense "PfsenseMASTER_OVH.lgdd.local" and in IP address "Public WAN IP".

      But I authenticate my VPN clients with the public IP address rather than the DNS name.
      In the P1 configuration of the tunnel, I also mention this IP address in "My login".

      Why do I do this?

      Well for me it is impossible for a client to resolve the DNS name "PfsenseMASTER_OVH.lgdd.local" because it is not known to the internet.
      Whereas the public IP is reachable from the internet.

      I see in all the tutorials that you have to put the DNS name but in my opinion it can't work.

      Can you explain me, if I'm wrong?

      1 Reply Last reply Reply Quote 0
      • Y Offline
        Yazur
        last edited by Mar 27, 2020, 10:26 AM

        c62931b1-b5a5-4152-98d7-656347d1867d-image.png

        "Leftauth" c'est bien pour l'authentification en local?

        La valeur pubkey est-elle bonne?

        1 Reply Last reply Reply Quote 0
        3 out of 3
        • First post
          3/3
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
          This community forum collects and processes your personal information.
          consent.not_received