I would like to setup a site to site VPN so I can access all our xfinity TV channels at our cabin. I have two negate 1100s. What would be the best way to do this, and are there any instructions on how to do it? Our House has xfinity and the cabin only has internet so I would like to use a VPN to connect to the house so I can use the newly released xfinity stream app that was released for the AppleTV.
Some Xfinity channels can only be watched at home on your Xfinity IP so you want to setup a Site to Site VPN (home server, cabin client) with this feature enabled.
Redirect IPv4 Gateway Force all client-generated IPv4 traffic through the tunnel.
https://docs.netgate.com/pfsense/en/latest/recipes/openvpn-s2s-psk.html
Why not look into a Roku Stick or something similar??
Its been a while since I cut the cord with xfinity but back then I was able to get a few xfinity channels working on the roku with my xfinity login creds at home then take the stick while traveling.
Like I said it has been a few years now, so I don’t know how much of that has changed now or still works
I have xfinity internet and another ISP at another location. I use pfsense on each end with openvpn Site2Site between the two. I have 125 megs on one side and 40Mbps on the other. Not sure how much bandwidth TV takes, but transferring files seems to take a while. There were a couple of good vids on uTube that walked me through it with no issues.
Might try wireguard vs OpenVPN to see if you get better performance.
Thank you. One more question. When installing the 1100 at both locations how should they be connected to my current routers?
I get some channels now using the channels app but with a vpn I can get all the channels
you have any links to the videos you watched? Also how do you have Pfsense connected to your network, what ports are you using?
I thought they dropped WireGuard
At home you obviously have Xfinity, what type of connection at the cabin?
Ideally, you’d want to bridge both modem/routers so you only have one router. Double Nat is messy and I always advise against it.
I have both a peer to peer (my tablet connects while I travel) and site2site (my two pfSense sites are connected always).
This guy is fairly annoying and usually glosses over stuff I am looking for, but if I remember correctly it helped.https://youtu.be/-8xt7LUtYH4
Can’t remember why but I also downloaded these way back when:
The ports used are not important (and a security issue to give out). Your site2site server has a port, the remote site needs to know that port and have its certificate in order to connect.
The peer to peers on each end have their own ports. Also think ahead for your IP ranges. The site2site needs a private IP range, and if you are going to have peer to peer - they also need different ranges. My remote site is several hundred miles away so I wanted both Site2Site and peer to peer so I had a backup plan if something went wrong.
Its an optional package now.
Home is xfinity router, cabin is a UDM Pro I got from a friend and the internet service is FIOS because the Verizon router sucked.
You could probably do an IPsec tunnel between PF at home and keep the UDM at the cabin if you’re digging it.
That would be nice. How do I setup bridge mode for the router and the 1100 is that don’t in the pfsense software