• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

How can I configure different encryption domain ? [SOLVED]

Scheduled Pinned Locked Moved IPsec
2 Posts 1 Posters 346 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • L
    luizmeirelesx
    last edited by luizmeirelesx Dec 19, 2018, 5:18 PM Dec 18, 2018, 7:31 PM

    Hello all,
    I don't know how to configure this situation on my IPSEC.

    I have a local network (192.168.0.0/24) and my customer has their local network (192.168.1.0/24), but they want to configure in other encryption domain (10.0.0.0/24) and don't mine.
    here the example..

    CUSTOMER'S SERVICE____ENCRYPTION DOMAIN_________REMOTE CUSTOMER
    192.168.0.1 ---------------------- -> 10.0.0.0/24--------------- > IPSEC ----> 192.168.1.1

    How can I configure that ? Do I need use NAT/BINAT ? If yes How ?
    Thank you.

    1 Reply Last reply Reply Quote 0
    • L
      luizmeirelesx
      last edited by Dec 19, 2018, 5:17 PM

      I fixed it..

      I put on IPSEC PHASE 2 > NAT BINAT IP 192.168.0.x/32 and LOCAL NETWORK 10.0.0.0/24 and REMOTE NETWORK 192.168.1.0/24

      and then I made NAT 1:1 > 10.0.0.x > INTERNAL IP > 192.168.0.1 and made the rules on INTERFACES IPSEC and LAN.
      thank you.

      1 Reply Last reply Reply Quote 0
      1 out of 2
      • First post
        1/2
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
        This community forum collects and processes your personal information.
        consent.not_received