Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Static nat behind a IPsec tunnel

    Scheduled Pinned Locked Moved NAT
    2 Posts 2 Posters 2.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J Offline
      jmbo
      last edited by

      Hi all,

      i want make static nat behind an IPsec tunnel.

      LAN A                                          LAN B
      192.168.0.0/24 <=====IPsec======>172.16.0.0/16

      NAT1:1 server1 (10.0.0.10 map to 172.16.1.10)
                                                          NAT1:1 server2 (10.0.0.20 map to 172.16.3.20)
                                                          NAT1:1 server3 (10.0.0.30 map to 172.16.4.30)

      if from LAN A i try to access 10.0.0.10 i want to be able to access server1 @172.16.1.10 in LAN B and so on for the other servers

      Is it possible ? if yes How ?

      Best regards, and thanks again for pfsense !!! great work

      1 Reply Last reply Reply Quote 0
      • H Offline
        hoba
        last edited by

        NAT through IPSEC won't work. There even has been a bounty for such a feature but the problem is that the traffic goes into the tunnel before we could even send it throgh NAT the way it is implemented into freebsd. There is no way to do this currently.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.