Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPsec manual routing from network NOT present in the IPsec configuration

    Scheduled Pinned Locked Moved
    IPsec
    1
    1
    117
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      Matt_Sharpe
      last edited by

      We have an IPsec configuration with a simple configuration:

      1 local subnet = 172.16.48.0/24
      1 remote subnet = 172.16.200.0/24
      1 ISOLATED remote subnet = 172.16.210.0/24

      We have a requirement from a customer to allow RDP from the local subnet, to a machine on the ISOLATED subnet. The original plan is to perform a DNAT on the IPsec interface to the isolated IP address.

      This is not working, and the obvious reason in my mind is that the ISOLATED subnet machine, needs a route back to the machine on the local subnet performing the RDP request.

      How would we implement this required routing? Is it possible if the ISOLATED subnet is not part of the IPsec configuration?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post