Lab Topology

Work Steps

1. Make sure NSX-V Edge is working properly.
2. Make sure OPNSense is working properly.
3. Make sure Virtual Machines can connect to each SDN.
4. Make sure network on Virtual Machines is configured properly.
5. Make sure NAT for Virtual Machines is working properly.

Configure NSX-V Edge

1. Login to vSphere web client > Networking & Security
2. Choose NSX Edges > Your Edge > VPN > IPsec VPN
3. Configure pre-shared key in global configuration status
4. Choose add new IPsec (green icon).
5. Configure IPsec, below is example

6. Start IPsec Services.

Configure OPNSense - IPSec

1. Login to OPNSense > VPN > IPSec > Pre-Shared Keys > Add

2. Login to OPNSense > VPN > IPSec > Tunnel Settings
   • Enable IPSec
   • Add 2 Phase of IPSec configuration
   • Phase 1

• Phase 2

• IPSec summary of configuration

Configure OPNSense - Firewall

1. Login to OPNSense > Firewall > Rules > IPSec
2. Allow ICMP for testing

IPSec Verification

1. Make sure ipsec is established/up

Client Testing

1. Test connection with ping and traceroute.