Sort of a continuation of the last post. This still uses FreeBSD, pfSense, Juniper SRX but it could fairly easily be adapted to OpnSense (fork/clone of pfSense), and other network vendor appliances.

In all the vendor documentation I find, examples for setting up IPSec tunnels use some of the worst encryption possible.

When I wander from place to place, I don’t want to have to remember to connect to the right VPN.

Sometimes you need to setup a tunnel between different kinds of endpoints.

A few months ago, a friend asked me for feedback on what kinds of network technologies should be taught in school (college level).

I like IPSec because it was designed to bind 2 networks together from the beginning.