4. Internet Over IPSec- Web Filter

Internet Over IPSec- Web Filter

  • B

    Hello,
    I have successfully sent internet traffic from site A to site B, but I need it to get filtered by a web filter at site B. What is the best way to accomplish this? I tried adding a gateway on the ipsec firewall rule, but it does not seem to work. Clients at site A have no internet and a traceroute shows TTL expired and a possible routing loop at the local gateway of site B which is a layer 3 switch.

    In my mind it would be Site A --tunnel---> Site B ---> ipsec traffic hops to local gateway ----> Local gateway routes traffic through web filter ----> web filter passes traffic back to pfsense ----> Internet.

    Even just a basic topology suggestion would be hugely helpful.

    Thanks,
    Dustin

    0
    B
     1 Reply
  • B

    I ended up setting up a wpad.dat file and configuring dhcp option 252 and dns wpad A record for auto proxy config to work around this. Would have preferred inline/transparent filtering but it will work for now.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy