VIP as source for IPSec tunnel?
-
Hi all,
Is possible to create IPSec tunnel with VIP as local endpoint?
Thanks!
-tt- -
Sure, as long as that VIP is a CARP VIP (or an IP alias on 2.0)
-
Whoa, CARP is possible too? Is it possible in 1.2.3? I cannot find the way to define the local endpoint of IPSec tunnel, please, can you guide me?
Thanks! -
CARP VIPs work on 1.2.3 also, they show up under the 'interface' drop-down on the IPsec config.
-
Oops, i've done something wrong, I've just LAN and WAN interface in drop-down (I'm using IP Alias VIP)…
-
(I'm using IP Alias VIP)…
That was the problem - CARP is on the list… By design, or bug?
-
If you're on 2.0 and they don't show up there, it may be a bug in the GUI. They should show up there (perhaps the code hasn't been updated to include them)
-
I see, I'm using 2.0-BETA4 (i386) built on Mon Nov 22 02:54:15 EST 2010, I'll stay trying :-)
Thank you for the help! -
I opened a ticket for this:
http://redmine.pfsense.org/issues/1041 -
Thank you, jimp!
