L2TP/IPsec VS OpenVPN on pfSense
-
There isn't a VPN section so I post here. I am very familiar with L2TP/IPsec on Mikrotik but have never installed or configured it on pfSense. So, what is the experience of users of pfSense? What I'll be using VPN for is road warrior setup to check home, such as view cameras, check AC, or grab a file, or maybe later, open door for domestic worker, etc. My days of watching friend’s movies from their servers are over.
-
Wireguard? (for the ones who like the bleeding edge..)
Apart from that, since you mention road warrior , I would say openvpn, just because it works everywhere, even behind double nat.
This isn't always the case with ipsec -
Actually, there are 3 I can think of, IPSec, OpenVPN and Wireguard. OpenVPN has long been popular for personal use, though Wireguard is coming along too. I have set up OpenVPN for my own use and IPSec for businesses, but have not done anything with Wireguard. There's one thing you have to be careful of though. With IPv4 & NAT, you might find yourself with the same network address at both ends, which will make the VPN unusable.
-
Yeah, I would start with OpenVPN and then look at other things if you need more speed.
-
@jknott said in L2TP/IPsec VS OpenVPN on pfSense:
I have set up OpenVPN for my own use and IPSec for businesses
My use case is both personal, and business (home office) so I'll emulate yours.
-
@nollipfsense said in L2TP/IPsec VS OpenVPN on pfSense:
My use case is both personal, and business (home office) so I'll emulate yours.
Hello,
a little bit late but for the records it is also pending on what hardware is in usage and for what you need it.
-
pfSense to pfSense I would prefer IPsec with QAT on
(if available on both sides) -
pfSense to other I would prefer IPSec with AES-NI on|-left aligned paragraph
-
Mobile device to pfSense IPSec is your hero
-
OpenVPN became or is the hidden defacto industrial standard
-
WireGuard the future hope
-
IPSec war proofed and spread out widely
-