Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Bonjour

    Scheduled Pinned Locked Moved IPsec
    3 Posts 3 Posters 1.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      az1441
      last edited by

      Guys I have PFSense running on a VM in Fusion.  On my edge is an Apple Airport Extreme.  My internal block is 10.1.1.0/24

      Is it possible to terminate mobile IOS IPSec VPNs on it (500 and 4500 forwarded) and have the mobile device have an IP on 10.1.1.0/24 and communicate freely (including multicasts)?

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        No. IPsec clients must operate in their own separate subnet and cannot be bridged to the existing LAN subnet. Multicast won't work either.

        An OpenVPN tap bridge would get you what you want but I don't believe the OpenVPN client for iOS supports tap yet (though I could be wrong on that)

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • J
          jasonlitka
          last edited by

          It doesn't.

          I can break anything.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.