Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSEC and NAT Spoofing farside networks

    Scheduled Pinned Locked Moved IPsec
    1 Posts 1 Posters 422 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • E Offline
      Eric333
      last edited by

      I have multiple tunnels set up and working - can ping and transfer files.  The problem is the source addresses of some off the traffic appears to be the LAN interface of the firewall (not the actual IP address of the host on the other end of the IPSEC tunnel)  All NAT rules are disabled.

      Example if I FTP from the far-side into the main site - the FTP host sees the traffic as the IP address of the Firewall's LAN Interface.  It should appear as the far-side's host IP address.

      What is going on here?

      How make this traffic appear as it is coming from the real IP addresses.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.