Mobile client IKEv2 vpn, access to remote network(IPSec)
-
Hi!
Trying to setup a VPN server so my clients can connect to our pfsense but also to have access to a remote network, trough a ipsec tunnel.
VPN(client)----------->pfsense(firewall)----->IPSec tunnel
10.220.X.0/24 -------172.28.X.0/24 --------- 172.17.X.0/24But i have no idea how to configure this in pfsense, tried to do a Outbound NAT so all traffic going from 10.220.X.0/24 to 172.17.X.0/24 get Nat:ed with LAN interfaces.
Any advice how to accomplish this?
-
@marcus-horne said in Mobile client IKEv2 vpn, access to remote network(IPSec):
But i have no
https://www.netgate.com/docs/pfsense/vpn/ipsec/configuring-an-ipsec-remote-access-mobile-vpn-using-ikev2-with-eap-mschapv2.html
Automatic outbound NAT should be fine.
"To pass all traffic, including Internet traffic, across the VPN, set the Local Network to 0.0.0.0/0" << this routes all the client traffic over the VPN.
If you want specific clients to receive a specific IP rather than an address out the range check this out:-
https://forum.netgate.com/topic/115795/guide-ikev2-ipsec-per-user-firewall-rule-settings-with-freeradius