Feature #16061
closed
Automatic Site-to-Site VPN
0%
Description
Would it be feasible to implement a solution similar to Ubiquiti's Site Magic? We have 12 locations with Netgate appliances that have 2 WAN connections per as well as HA firewalls in 2 locations. Manually building site to site VPNs has been challenging and exacerbated by bugs in Wireguard and the interaction of Wireguard and FRR. It seems like Ubiquiti is just using Wireguard and FRR (OSPF) with their own orchestration software to make it work so it should be doable in theory (though I'm not implying it'd be easy). I could even settle for a proper Tailscale implementation that allows me to disable NAT. I have a strong preference toward open source software and I want to stick with pfSense but we're actively evaluating switching to UniFi because I'm the only one who understands all the idiosyncrasies of our VPN setup which is a business continuity problem.
Updated by Jim Pingle about 2 months ago
- Status changed from New to Duplicate
This is already planned as a part of multi-instance management, so no need for a separate feature request.
Updated by Andrew Collings about 2 months ago
You just made my year. Is there a public roadmap? I checked the roadmap tab in Redmine but I didn't see anything.
Updated by Jim Pingle about 2 months ago
There is no full public road map but there is a page with more information: https://www.netgate.com/multi-instance-management-pfsense-plus