Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    IPSEC site to site, remote private network behind a NAT

    IPsec
    2
    2
    605
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      smitopher09 last edited by

      I have setup a site to site between pfSense and a Ubiquity EdgerouterX
      The ER X is behind an ISP NAT and does not have a public ip address. They will only offer me a public address for a 400% price increase.

      My home pfSense site is in Austin, Texas. Running 2.4.4-RELEASE. Just updated. no change in behavior from previous release
      My remote ER X site is in the Philippines

      I followed the recipes found at
      link EdgeRouter-IPsec-Site-to-Site-VPN-behind-NAT
      link EdgeRouter-Site-to-Site-IPsec-VPN-to-pfSense
      and
      link configuring-a-site-to-site-ipsec-vpn.html

      I can now access any host on the pfSense network from the ER X network .
      I can not access any host on the ER X network from any host on the pfSense network

      Am I missing something on my pfSense config

      The ER X config
      0_1537870179531_uberx_5.png image url)
      pfSense Phase 1
      0_1537870234859_pfsenseP1_5.PNG
      pfSense Phase 2
      0_1537870277137_pfsenseP2_5.PNG

      1 Reply Last reply Reply Quote 0
      • A
        Alitai last edited by

        Without a public ipv4 address i see no chance.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post