Configure OpenVPN on pfSense 2.6.0

pfSense 2.6.0 is a firewall software used to monitor and control incoming and outgoing network traffic based on predetermined security rules. A virtual private network (VPN) is an encrypted connection over the Internet from one device to a private network or one private network to another private network.

Demo environment (Virtual)
CPU: 64-bit
RAM: 4GB
Disk drive: 10GB
Network interface: 2

Steps for Configure OpenVPN on pfSense 2.6.0

  1. Create an internal Certificate Authority
  2. Create an internal Certificate
  3. Configure OpenVPN
  4. Create VPN Users
  5. Install Client Export Package
  6. Configure Client Access

Create an internal Certificate Authority

1. Open System > Cert.Manager

Configure OpenVPN on pfSense 2.6.0

2. Select CAs and Click Add.

Configure OpenVPN on pfSense 2.6.0

3. Enter the Descriptive name and choose Method Create an internal Certificate Authority.

Configure OpenVPN on pfSense 2.6.0

4. Internal Certificate Authority

  • Descriptive name: PFSENSE_CA
  • Common Name: internal-ca
  • State or Province: Enter State
  • City: Enter City
  • Organization: Enter Organization
  • Organizational Unit: Enter Organization Unit
Configure OpenVPN on pfSense 2.6.0

Create an internal Certificate

5. Open System > Cert.Manager > Certificate and Click on Add/Sign

Configure OpenVPN on pfSense 2.6.0

6. Choose Method Create an internal Certificate Enter a Descriptive name

  • Method: Create an internal Certificate
  • Descriptive name: VPN_Certificate
Configure OpenVPN on pfSense 2.6.0

7. Internal Certificate

  • Select Certificate Authority
  • Common Name: VPN_Certificate
Configure OpenVPN on pfSense 2.6.0

8. Certificate Attributes

  • Choose Certificate type Server Certificate and click save
Configure OpenVPN on pfSense 2.6.0

Configure OpenVPN

9. OpenVPN > OpenVPN> Wizards

Configure OpenVPN on pfSense 2.6.0

10. Choose Type of Server: Local User Access and click Next.

Configure OpenVPN on pfSense 2.6.0

11. Choose a Certificate Authority (CA) and click Next.

Configure OpenVPN on pfSense 2.6.0

12. Choose a Server Certificate and click Next.

Configure OpenVPN on pfSense 2.6.0

13. General OpenVPN Server Information

  • Enter Description: VPN Users
  • Leave settings as default
Configure OpenVPN on pfSense 2.6.0

14. Cryptographic Settings

  • Leave settings as default
Configure OpenVPN on pfSense 2.6.0

15. Tunnel Settings

  • Enter Tunnel Network: 192.168.8.0/24
  • Redirect Gateway
  • Enter Local Network: 192.168.2.0/24
  • Enter Concurrent Connections: 20
Configure OpenVPN on pfSense 2.6.0

16. Client Settings click Next.

Configure OpenVPN on pfSense 2.6.0

17. Firewall Rule Configuration

  • Traffic from clients to the server
  • Traffic from clients through VPN
Configure OpenVPN on pfSense 2.6.0

18. Click Finish

Configure OpenVPN on pfSense 2.6.0

Create VPN Users

19. Open System > User Manager

Configure OpenVPN on pfSense 2.6.0

20. Select Users and Click Add

Configure OpenVPN on pfSense 2.6.0

21. User Properties

Enter Username, Password, Full name, and tick Click to create a user certificate

Configure OpenVPN on pfSense 2.6.0

22. Create Certificate for User

Enter Descriptive name and choose Certificate authority

Configure OpenVPN on pfSense 2.6.0

23.  Click Save

Configure OpenVPN on pfSense 2.6.0

Install Client Export Package

OpenVPN Client Export Package is used as the easiest way to configure an OpenVPN client.

24. Open System > Package Manager

Configure OpenVPN on pfSense 2.6.0

25. Select Available Packages Search OpenVPN and Install.

Configure OpenVPN on pfSense 2.6.0

26. Click Confirm.

Configure OpenVPN on pfSense 2.6.0

27. The installation should start, wait for it to finish.

Configure OpenVPN on pfSense 2.6.0

Configure Client Access

28. Open VPN > OpenVPN > Client Export and download the Open VPN Package

Once OpenVPN Client Export Package is installed, the package is located at VPN > OpenVPN, on the Client Export tab. 

Configure OpenVPN on pfSense 2.6.0

29. Install the Package and Open OpenVPN

Note: In this tutorial, we are using Windows 10 Computer

Configure OpenVPN on pfSense 2.6.0

30. Right-click on the icon and click Connect.

Configure OpenVPN on pfSense 2.6.0

31. Enter the Password and Click OK.

Configure OpenVPN on pfSense 2.6.0

32. Check the Connectivity using the ping utility.

Configure OpenVPN on pfSense 2.6.0
Scroll to Top