Site-to-Site VPN Firewalla to pfSense box

Follow

bn19

• January 02, 2024 09:09

Is it possible to create a Site-to-Site VPN to a different vendor firewall? (pfSense) 

What are the steps required?

0

• 

  Michael Bierman

  • January 02, 2024 09:23

  If the other firewall is compatible, yes. 

  • https://help.firewalla.com/hc/en-us/articles/115004274633-Firewalla-VPN-Server
  • https://help.firewalla.com/hc/en-us/articles/360023379953-VPN-Client

  0

  Comment actions Permalink
• 

  James Willhoite

  • January 15, 2024 23:15

  It is possible. I currently have a Site-to-site set up between my FWG+ and a Raspberry Pi 2B, also a Site-to-site between my FWG+ and a WireGuard Server hosted on a VM, and am currently configuring another RPi to put into place at another Family Members House. This one is a little different, will allow me access into their network, but only route certain services/ip address back through to my FWG+.

  0

  Comment actions Permalink
• 

  Firewalla

  • January 16, 2024 00:46

  When you setup site to site with rpi, are you also using wireguard? Is your connection bi-directional? (meaning, did you insert any additional routes on the rpi side?)

  0

  Comment actions Permalink
• 

  James Willhoite

  • January 16, 2024 00:57
  • Edited

  Wireguard yes, Bi-Directional yes. I had to put in a Static Route to point my subnet to the RPi but that was it.

  I use to use OpenVPN, then moved to IKEv2, then moved to WireGuard and has been more stable and less disconnects. The RPi is on StarLink so there are more disconnects with that normally and WireGuard helps keep the tunnel up, IKEv2 I had to write a script that looked for the connection to drop and restart the tunnel. 

  0

  Comment actions Permalink

Please sign in to leave a comment.