Only tunnel specific traffic over VPN



  • Situation:

    1x Juniper SRX220HE at Site A - 192.168.1.254/24
    1x PfSense 2.3 at Site B. - 192.168.111.1/24

    Ipsec tunnel between the two sites is up and running fine. I am able to ping 192.168.1.254 and 192.168.111.1

    I would like site B to use the WAN address from site A only for HTTP/HTTPS traffic.

    Currently i've tried the following:

    Created a new Gateway(192.168.1.1) and added a firewall rule to only direct http/https traffic over this gateway. This did NOT work.
    Set the P2 settings to some of the ips we need to forward to the other location. -> This works but forwards all the traffic.

    I have no clue on how to continue. Could anyone assist me? :)


Log in to reply