Word Count: 885 · Reading Time: 5 minutes


Given how much more efficient IPSec is than OpenVPN, I decided to setup an IKEv2 endpoint using FreeBSD on my network to allow for accessing content which is restricted to the USA and doing administration on my network when traveling. FreeBSD The DEFAULT kernel contains everything you need to run IPSec, just add the following to /boot/loader.conf: if_enc_load="YES" If you’re building a custom kernel, you’ll want: options IPSEC device crypto device enc OpenIKED As OpenIKED has a relateively simple configuration and applications written by the OpenBSD team tend to be relatively secure, I started with it.