Pfsense Layer 2 over WAN (L2TPv3?)



  • Hi,

    I have to administrate several Pfsense machines, one on my head office a the rest in multiple branches. My goal is to centralize the firewall of all the branches, but, if possible I don't want to use VPN (to much cost for encrypt and decrypt data). I would like to setup Layer2 a pseudo-wire between head office and branches using L2TPv3. Consider that my head Office has multiple vlans and also branches can have more than one VLAN. Avery branch has a symmetric  connection of 100 Mb/s and 8 static Pubblic IPs. My head office has a symmetric connection at 1 Gb/s and 64 Pubblic IPs. Is It possible to do that with PfSense?

    Thank you



  • So you want to broadcast your companys data over the internet on a non-encrypted tunnel?

    Sounds like a great plan if you have balls the size of saturn


  • LAYER 8 Global Moderator

    Even if you forget the company data over internet without encryption.. I don't believe freebsd has any support for L2TPv3??

    Wouldn't you just normally do GRE over Ipsec if you needed layer 2 connectivity?  This way your traffic is encrypted.



  • @johnpoz:

    Wouldn't you just normally do GRE over Ipsec if you needed layer 2 connectivity?  This way your traffic is encrypted.

    not trying to hijack this thread but since you mention it– got any decent guides or tuts for setting up GRE-over-IPSEC w/ pfSense? I've not really come across any and the topic has always interested me.


Log in to reply