Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSec from ASA to pfSense for remote Internet access

    Scheduled Pinned Locked Moved IPsec
    1 Posts 1 Posters 243 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • V
      Vsevolod
      last edited by Vsevolod

      Hello!
      I have two sites: SiteA and SiteB. SiteA runs pfSense and only has one interface connected to the Internet. SiteB runs Cisco ASA 5505 and is also connected to the Internet as well as it has LAN users. The goal is to let users from SiteB access the Internet access of SiteA via IPSec tunnel. So far I have managed to bring up IPSec tunnel between A&B. I am able to ping SiteB LAN from SiteA. I am also able to access WAN interface of pfSense on SiteA via IP address. I have created NAT rule on pfSense for SiteB LAN IP adressess. For some reason I am not able to access Internet and resolve DNS. I think the reason is that traffic trying to go out to the internet goes back into a tunnel as it uses the same interface on pfSense for IPSec and Internet access. Could anyone halp me to solve my case? Any help is appreciated.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.