[SOLVED]How to exclude IPSec traffic from NAT properly
I configured IPSec tunnel between pfsense and ASA, and I find, that "answer" traffic from pfsense to ASA going to NAT (when I send icmp requests from ASA-side network I see only requests in packet capture, but otherside I see both packets when send ping from pfsense-side network)
Now I have a autoconfigured rule "NAT from: LAN network to any", how to properly exclude ASA-side network from this rule?
I forgot to add firewall rules
add rule to allow traff from ASA-side to LAN