Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Ipsec to host group

    Scheduled Pinned Locked Moved
    IPsec
    2
    3
    1.9k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jmbo
      last edited by

      Hi all,

      is it possible to create a ipsec vpn to a group of host instead of to single host (in Local subnet field)?

      Regards

      JMB

      1 Reply Last reply Reply Quote 0
      • GruensFroeschliG
        GruensFroeschli
        last edited by

        You mean a single tunnel to multiple endpoints?
        No.
        But you can have a pfSense on both ends of the tunnel and have the pfSense on the other end of the tunnel as gateway for your remote subnet.

        We do what we must, because we can.

        Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

        1 Reply Last reply Reply Quote 0
        • J
          jmbo
          last edited by

          OK

          at the other end it is a cisco ASA,

          they only want to see 3 host on our LAN.

          they try to implement this:

          Extended IP access list ACL-XXX

          10 permit ip 150.2.0.0 0.0.255.255 host 172.16.3.14

          20 permit ip 150.2.0.0 0.0.255.255 host 172.16.3.16

          30 permit ip 150.2.0.0 0.0.255.255 host 172.16.3.15

          any idea ?

          1 Reply Last reply Reply Quote 0
          • First post
            Last post