Page 1 of 1
Feature request
Posted: Wed Aug 06, 2014 6:44 pm
by joeschmit2001
I would like to see the feature be added to next release:
I use Pfsense as my OpenVpn service, I would like to move to to your project for offloading VPN service.
The feature that stop me from moving to your product is this:
I use both Certificate and Username for login.
1.I setup CA server
2.I created User with Cert and User/Password access
3.I created Openvpn tunnell
4.I connect to VPN server then login with Cert and and User/Password
Can you please add this feature
Re: Feature request
Posted: Wed Aug 20, 2014 8:21 am
by thisjun
What feature do you want exactly?
Re: Feature request
Posted: Thu Aug 28, 2014 7:32 pm
by joeschmit2001
Re: Feature request
Posted: Thu Sep 11, 2014 5:13 am
by thisjun
I red the page.
That makes no sense.
What specific problem did you encounter?
Re: Feature request
Posted: Thu Sep 11, 2014 5:53 pm
by joeschmit2001
Here is how Pfsense works to day for me with Openvpn:
1. I generate a Certificate / Key pair for the server
2. I generate a Certificate / Key pair for the user say "john"
3. Build a user "john" with a password
4. Ty the Cert to that user in user manager
5. Build a Openvpn server say at port 1194
6. Ty Certificate / Key to that server during setup.
7. Open ports on firewall during setup
8. Generate Openvpn file with addon package that contains install files.
9. Test connection via Openvpn manager to desired site
10. Enter User name / Password
11. Wait for connect and use.
Bottom line you have to have Certificate / Key pair and User Name / Password for User of "John" to get access of any kind.
I would like to take the load off the Pfsense firewall and place on separate server.
Re: Feature request
Posted: Wed Sep 24, 2014 6:00 am
by thisjun
I think it may be possible.
Re: Feature request
Posted: Wed Sep 24, 2014 4:38 pm
by joeschmit2001
Have you download the product above Pfsense to see how would work?
I can help you with config file to see how would work..
You just need to setup Virtural-Box Image and I can provide you a running know good config.
Re: Feature request
Posted: Thu Sep 25, 2014 8:33 pm
by qupfer
And again, what is the "feature" you want?
Combined Cert and password authentication??
I would simply set a passphrases for the cert. So, only entering the username is missing.
Re: Feature request
Posted: Wed Oct 08, 2014 6:15 pm
by joeschmit2001
Sorry about the late reply , The present way I use it is the client is a router "Linksys3200" "OpenVpn"connected to Pfsense server in the states. It uses Password , Username and Cert to authenticate.
I connect to internal network and state side internet.
I trying to move off pfsense as a VPN server.
I would like to add IPSEC and OpenVpn at the same time same server.