Can I force all traffic over IPSEC VPN using 0.0.0.0/0?



  • When setting up an IPSEC VPN between to pfSense firewalls, is it possible to set a remote subnet of 0.0.0.0/0 and effectively force all traffic over the VPN and allow nothing to the Internet?

    Thanks,

    Rich



  • afaik no.
    I dont use ipsec myself so i cant say for sure, but from what i read you cannot route over ipsec.

    This is possible with openVPN.
    (although not with a 0.0.0.0/0 route, but with 2 routes:
    0.0.0.0/1 and 128.0.0.0/1)


Log in to reply