Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Forwarding over IPSec

    Scheduled Pinned Locked Moved IPsec
    3 Posts 3 Posters 494 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      rafnizp
      last edited by

      I need advice on how to configure following example:

      Client >>> PFSense1 <IPSec Tunnel> >>> PFsense 2 >>>> Reverse Proxy >>> WWW

      Now the question is how to redirect HTTP and HTTPS request received on PFsense 1 to WWW server through IPSec Tunel that is behind PFsense 2

      Thanks for help

      1 Reply Last reply Reply Quote 0
      • Z
        Zawi
        last edited by

        Use port forward

        Firewall>NAT>Port Forward>Edit

        1 Reply Last reply Reply Quote 0
        • jimpJ
          jimp Rebel Alliance Developer Netgate
          last edited by

          The traffic would have to hit a proxy on pfSense1 for that to work. The problem is that anything on pfSense2 will need to see a source address of pfSense1 or the traffic won't return to pfSense1. So you could have haproxy on pfSense1 accept and hand off the requests to the second reverse proxy.

          If you were using OpenVPN then it's possible to port forward directly across, since OpenVPN will work properly with reply-to if you make the right set of rules on assigned interfaces. That doesn't work with IPsec VTI yet.

          Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

          Need help fast? Netgate Global Support!

          Do not Chat/PM for help!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.