Feedback on pfSense Configuration Recipes — IPsec Site-to-Site VPN Example with Pre-Shared Keys
Feedback: (from twitter:) Your example is in dire need of updated cryptography settings because both sides have equally outdated and insecure settings.
DH group 2 is no longer recommended and screenshots are quite old. The current GUI even contains a warning against using DH group2. There will need a couple of wording changes since group 14 is now the default for DH at P1 and PFS at P2. Updated screenshots attached.