How to do this >> PFSENSE C has connection to PFSENSE A, through PFSENSE B (IPSEC Tunnels)



  • Hi guys, I need help with this scenario.

    My objective is that PFSENSE C has connection to PFSENSE A, by carrying PFSENSE B LAN IP address. With no direct IPSEC tunnel between PFSENSE C to PFSENSE A. Means the only way C can ping to A is through B.

    PFSENSE A LAN: 192.168.10.1
    PFSENSE B LAN: 192.168.20.1
    PFSENSE C LAN: 192.168.30.1

    Now, I have configured the IPSEC.
    PFSENSE A has IPSEC Tunnel to PFSENSE B
    PFSENSE B has IPSEC Tunnels to PFSENSE A and PFSENSE C
    PFSENSE C has IPSEC Tunnel to PFSENSE B

    NAT Outbound has been configured on PFSENSE B, with the source IP of PFSENSE C LAN address, translation to interface address.

    I have tried NAT/BINAT settings on the Phase 2 of IPSEC on B and C, but no results.

    Can anyone tell me how to achieve the objective?
    Or is this cannot be done? if so, can you guys give me alternatives?

    Thank you so much.


Log in to reply