Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    NAT VPN Ipsec Pfsense

    Scheduled Pinned Locked Moved NAT
    2 Posts 2 Posters 405 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      nicocla17
      last edited by

      I have a vpn Ipsec set but the P2 there are two hosts with the same network rank 172.20.x.x as my lan. The other site can not perform masked in its presentation. How do I solve it from my side? I need to perform a nat to a fake ip and that it goes to the vpn? sorry for mi english

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        If you are already connected to a site that has that network, then the other side must do NAT, not you. There isn't a way for you to hide that conflict using a single firewall.

        There are some ugly ways around it, like setting up a second firewall to handle that one VPN and do NAT between your main firewall and that firewall, but it's not ideal.

        You could also renumber your LAN, but that would be significantly more work.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 1
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.