Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Ipsec to main site with two the same remote subnets

    Scheduled Pinned Locked Moved IPsec
    5 Posts 3 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Y
      yaboc
      last edited by

      per subject is this possible ?
      main site 10.1.1.0/24
      remote subnet currently connected 192.168.1.0/24
      new subnet that we want to join 192.168.1.0/24 which can't be modified

      would this cause any issues ?

      thanks

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        NAT must be done on the site with the conflict. If you cannot change the new router you are connecting with, then you'll have to renumber or NAT your other conflicting site.

        Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • R
          rikkert
          last edited by

          Hello,

          I have the exact same situation here at the moment.

          I have a PfSense router at our main office. And we have Draytek routers at our remote offices. Wee need to monitor the servers/ switches and other network devices in the remote office.

          Some of our remote offices have the same subnet e.g. 192.168.0.0/24.

          Is there a way to make this work? (like NAT over IPsec?)

          Hope someone can help me out.

          Kind regards,

          Rik

          1 Reply Last reply Reply Quote 0
          • jimpJ
            jimp Rebel Alliance Developer Netgate
            last edited by

            @rikkert:

            Some of our remote offices have the same subnet e.g. 192.168.0.0/24.

            You can work around this with NAT on IPsec Phase 2 entries. Your situation is different than the one the OP of this thread has, please start a new thread.

            Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            1 Reply Last reply Reply Quote 0
            • R
              rikkert
              last edited by

              Thanks for your reply jimp.

              I will start a new thread.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.