In this recipe, we started phase 1 IPsec configuration on the Mobile Clients tab, which enables us to set up a client-server IPsec connection. We also completed phase 2 configuration. During configuration, we chose Local Database for user authentication, which means that pfSense will use the User Manager for authentication. As a result, we also had to create users that have as one of their privileges the ability to create an IPsec tunnel, which is what we did when we created a user group that had User – VPN: IPsecxauthDialin as one of its privileges, and added users to it.