pfSense | Guides | HuntVPN Documentation

pfSense

HuntVPN Documentation › Guides

- www.huntvpn.com

Difficulty Level: Intermediate

pfSense is a free and open-source firewall and router that also features unified threat management, load balancing, multi-WAN, and more. The following paragraphs show you how to add HuntVPN to your pfSense firewall.
PfSense Homepage:

pfsense.org

Configure PfSense Step by Step:

Adding HuntVPN's Certificate Authority (CA)
Import HuntVPN Certificate
Adding HuntVPN as an OpenVPN Client

1. Adding HuntVPN's Certificate Authority (CA)

Download your connection profile and extract the file ca.crt.
Open the ca.crt file with a text-editor like notepad.
Use your browser to log in to the pfSense Web Interface.
Go to the Certificate Manager by clicking on 'System' and then 'Cert. Manager'.
In the CA tab click on the Add button.

Add the following fields:

Descriptive name:HuntVPN CA
Method:Import an existing certificate authority
Trust Store:Check Add this Certificate Authority to the Operating System Trust Store
Certificate data:copy-past the certificate from the ca.crt file.

Click the Save button to add the CA.

2. Import HuntVPN Certificate

Extract the files cert.crt, and privat.key from your downloaded connection profile and open them in a text editor.
Go to the Certificate Manager by clicking on System and then Cert. Manager
In the Certificates tab click on the Add/Sign button.

Add the following fields:

Method:Import an existing certificate
Descriptive name:HuntVPN Certificate
Certificate Type:X.509 (PEM)
Certificate data:copy-past the certificate from the cert.crt file.
Private key data:copy-past the certificate from the private.key file.

Click the Save button to add the Certificate.

3. Adding HuntVPN as an OpenVPN Client

HuntVPN can be configured as a OpenVPN Client in pfSense using the following steps.

In the top menu, click on VPN and select the OpenVPN option.
Click on the Clients option in red.
Press the green "Add button at the bottom.
Extract the tls.key and vpn.txt file from your downloaded connection profile and open them in a text editor.

Add the following fields:

Description:HuntVPN
Server mode:Peer to Peer ( SSL/TLS )
Device mode:tun - Layer 3 Tunnel Mode
Interface:any
Server host or address:use the Host specified in vpn.txt
Server port:use the Port specified in vpn.txt
TLS Configuration:Select Use a TLS Key
Automatically generate a TLS Key:Unselect
TLS Key:copy-past the certificate from the tls.key file.
TLS Key Usage Mode:TLS Encryption and Authentication
Peer Certificate Authority:select the previously imported HuntVPN CA
Client Certificate:select the previously imported HuntVPN Certificate
Data Encryption Negotiation:Check Enable Data Encryption Negotiation

Click the Save button to add the OpenVPN Client.

w: pfSense

Is this article helpful to you?