Cant connect to internet via IPSEC
-
I have set up an IKEv2 IPSEC connection between a phone and my pfsense box using certificates. I want to have the phone's connection to the web routed through the pfsense to the outside world. The phone and pfsense say the connection is made but I cannot reach any outside site(such as google.com).
I saw the firewall was blocking connections from the phone ip to the pfsense wan ip, so I made a quick rule to allow that. Then I saw that the virtual ip assigned to the IPSEC client was being blocked from leaving the pfsense so I made a quick and dirty rule to allow ipsec from the ipsec addy to any. I now do not see any firewall logs blocking the connection but I still cannot connect to any site. I do see allowed connections from the IPSEC IP to www.google.com but its not making it to the phone browser.
It seems to me that my phone is able to request sites through the pfsense wan but they arent making it back because of something. NAT?