IPsec Mobile - Static IPs
I am looking to set up IPsec mobile, but would like to be able to allow certain people access to more of the network than others.
Is it possible to assign DHCP reservations for the network the mobile clients get? Maybe by client MAC address?
I've already searched and only found a post from 2012, so I am wondering if this situation has changed.
If this isn't possible, I suppose the other option is to run a few pfSense VMs just for mobile clients on their own public IPs, but this seems wasteful.
Just looked at the IPsec Mobile configuration options again - doesn't look like it will be possible as users aren't dropped into an existing subnet, but a virtual network.
Anyone know better? :)
djamp42 last edited by
I'm trying to do this exact same thing but with radius, i have had no luck yet..
Well, that's another one scratched off the list! Haha…
In another thread, with some manual hacking, someone had this working from RADIUS. If it does work in a reliable way we'll bring it into the GUI eventually, but it's not there yet.
I'll see if I can find that thread and what it entails! Thanks!
I found it yesterday after I posted that reply but forgot to drop the link back here: https://forum.pfsense.org/index.php?topic=99756.0
Thank you! If a diff is made available, I'll gladly test it and report back :)