[SOLVED] Exclude 10.0.10.0/24 subnet from IPsec traffic
-
Hello, All!
I got pfSense 2.2.4, terminating IPsec tunnel. It works almost fine, there is P2 entry for 10.0.0.0/8 net and all packets destinated to 10.0.0.0/8 are going through that tunnel.
I need to route traffic destinated to 10.0.10.0/24 subnet. As there are huge amount of /24 networks, I cannot create multiple P2 entries to exclude 10.0.10.0/24 by design. Its not an option.
I just need one P2 entry for 10.0.0.0/8 for IPsec confguration and 10.0.10.0/24 subnet traffic routed to another router, not passing throug IPsec.
-
Solved - LAN based firewall rule, where you set exact gateway for traffic (Advanced features, Gateway). Worked like a charm for me.