IKEv2/IPSec Client configutation on OpenWrt 18.06

Hello,
Can I kindly ask for help with configurating OpenWrt 18.06 (Xiaomi3g) as client for IKEv2/IPSec service.

Thanks.

1 Like

Please provide more details about service which you want to configure. Is this site-to-site tunnel? What protocol is use for authorization? Preshared keys, eap-mschap?

Sorry for incomplete info, looks like it is site2site tunel with eap-mschapv2 auth, login/pass is used for auth.
I found manual for Ubuntu https://nordvpn.com/tutorials/linux/ikev2ipsec/.
How it will look for OpenWRT? I need to pass all traffic from WAN directly to nordvpn. Will it be possible to integrate VPN on/off switch to Luci UI?
Thanks.

Configuration on Openwrt will be exactly the same like on the ubuntu.
According to the nord vpn example config, establishing tunnel will trigger redirect all wan traffic through nordvpn

rightsubnet=0.0.0.0/0

If I had to configure it, I would change in /etc/ipsec.conf

  auto=add 

to

  auto=start

And I would control it by starting end stoping IPsec service in Luci UI (System/Startup)
30

Any luck with getting it done?