Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSec tunnel with public IPs, 1 for peer and 2 ED IPs. Can't set it up.

    Scheduled Pinned Locked Moved IPsec
    1 Posts 1 Posters 480 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D Offline
      dhcmega
      last edited by

      Hi all, this is my first time here and also the first time with pfSense.

      I have little experience with VPNs but managed to make this scenario work with a Cisco PIX 501. Now I have to setup the same VPN, but with pfSense.
      What I have is the following:

      my network is private 192.168.1.X, with 4 VM servers.
      my pfSense, a 5th VM server, has two NICs, private and public.
      my pfSense has its own public IP and 3 more public IPs for exposing services that are Port NAT forwarded to the servers based on port.

      I need to configure the Phase 2 of the IPSec to tell the other side that I have 2 IPs on my Encryption Domain, but I can only set 1 or a network. How can I set two? Do I have to create another Phase 2 rule?

      Do I have to tell the Phase 2 that there is NAT taking place? Because is not a 1:1 NAT, but the admin presents it as is it was.

      Also, all servers are able to reach the Internet, but using the peer IP, I need them to use the 2nd IP of my set of 4 public IPs.

      Thanks

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.