IPSec tunnel with public IPs, 1 for peer and 2 ED IPs. Can't set it up.
-
Hi all, this is my first time here and also the first time with pfSense.
I have little experience with VPNs but managed to make this scenario work with a Cisco PIX 501. Now I have to setup the same VPN, but with pfSense.
What I have is the following:my network is private 192.168.1.X, with 4 VM servers.
my pfSense, a 5th VM server, has two NICs, private and public.
my pfSense has its own public IP and 3 more public IPs for exposing services that are Port NAT forwarded to the servers based on port.I need to configure the Phase 2 of the IPSec to tell the other side that I have 2 IPs on my Encryption Domain, but I can only set 1 or a network. How can I set two? Do I have to create another Phase 2 rule?
Do I have to tell the Phase 2 that there is NAT taking place? Because is not a 1:1 NAT, but the admin presents it as is it was.
Also, all servers are able to reach the Internet, but using the peer IP, I need them to use the 2nd IP of my set of 4 public IPs.
Thanks