Enter a preshared key. You can use an online generator to create one. Please save this preshared key.

1. Go to VPN → IPsec

2. Select +Add P1

Key Exchange Version: IKEv1

Internet Protocol: IPv4

Interface: <Your pfSense WAN Interface>

Remote Gateway: Privatise ROC IP Address

Authentication Method: Mutual PSK

Negotiation Mode: Main

Peer Identifier: Peer IP Address

Pre-Shared key: the same key you generated earlier.

Encryption Algorithm

Algorithm: AES

Key Length: 256 bits

HASH: SHA1

DH Group: 2

Lifetime (Seconds): 86400

Advanced Options

Disable rekey: Unchecked

Margintime (Seconds): Empty

Responder Only: Unchecked

NAT Traversal: Auto

Dead Peer Detection: Checked

Delay: 10

Max failures: 5

Select Save.

3. +Add P2

Mode: Tunnel IPv4

Local Network: Network: Put your local LAN network subnet

Remote Network: Network: 10.12.0.0/24 (10.12.0.0 255.255.255.0).

Phase 2: Proposal

Protocol: ESP

Encryption Algorithm-AES: 256bits

Hash Algorithms: SHA1

PFS Key Group: 2

1. In the Menu Bar go to Status:→ IPsec

2. On the tunnel, you created select: Connect VPN