Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Port Forward and translated traffic on LAN not going through IPSec

    IPsec
    1
    1
    370
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      trimmings last edited by

      Hi all.

      I have a device in a DMZ (192.168.240.x) network that I have port forwarded to the LAN interface of my pfsense router.  The thing works great in the local network (172.16.A.xyz/24) but will not open on the Ipsec remote network (172.16.B.xyz/24) - I have allowed all Ipsec interface traffic and all other traffic is happily operating from network A to B.

      –---------
      EDIT: fixed the below by reworking the ipsec routes (it didn't like routing to a /16 172 subnet) and some tweaks
      Also in a problem along the same vein perhaps I have a network through a gateway that I route to (10.3.xyz.xyz/16) - from the local networking everything seems to be working fine, however it won't seem to function over the Ipsec vpn at the remote site.

      Am I missing something in translating networks through the Ipsec interface? In previous routers I used (snapgears) creating a source translation on the outgoing traffic interface was sufficient, but that doesn't seem to be the case here or I'm doing something wrong.

      Thanks in advance - if there is any more info, config required let me know...

      1 Reply Last reply Reply Quote 0
      • First post
        Last post

      Products

      • Platform Overview
      • TNSR
      • pfSense
      • Appliances

      Services

      • Training
      • Professional Services

      Support

      • Subscription Plans
      • Contact Support
      • Product Lifecycle
      • Documentation

      News

      • Media Coverage
      • Press
      • Events

      Resources

      • Blog
      • FAQ
      • Find a Partner
      • Resource Library
      • Security Information

      Company

      • About Us
      • Careers
      • Partners
      • Contact Us
      • Legal
      Our Mission

      We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

      Subscribe to our Newsletter

      Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

      © 2021 Rubicon Communications, LLC | Privacy Policy