IPSec from ASA to pfSense for remote Internet access
-
Hello!
I have two sites: SiteA and SiteB. SiteA runs pfSense and only has one interface connected to the Internet. SiteB runs Cisco ASA 5505 and is also connected to the Internet as well as it has LAN users. The goal is to let users from SiteB access the Internet access of SiteA via IPSec tunnel. So far I have managed to bring up IPSec tunnel between A&B. I am able to ping SiteB LAN from SiteA. I am also able to access WAN interface of pfSense on SiteA via IP address. I have created NAT rule on pfSense for SiteB LAN IP adressess. For some reason I am not able to access Internet and resolve DNS. I think the reason is that traffic trying to go out to the internet goes back into a tunnel as it uses the same interface on pfSense for IPSec and Internet access. Could anyone halp me to solve my case? Any help is appreciated.