IPSEC - NAT - PFSENSE
-
Hello,
To start, here is our test scheme:
SchemeThe objective is to create an IPSEC tunnel between "Pfsense OVH" which has a public IP and "Pfsense GDD" which does not.
The small difficulty in this scheme is that there is NAT between the "Freebox" router which has a public IP and redirects to the WAN IP of "Pfsense GDD".
The question is, how to configure Pfsense so that IPSEC works with our scheme?
Here is the current configuration:
Currently when we start the IPSEC VPN from "PFSENSE OVH" we receive UDP frames on port 500 at Pfsense GDD.
Except that these frames arrive with the source IP of the Freebox and not the public IP of Pfsense OVH, so the IPSEC tunnel is not created.
How to do it?
-
@yazur Solution:
PFSENSE OVH: https://nsa40.casimages.com/img/2021/06/16/210616052718680814.png
PFSENSE GDD: https://nsa40.casimages.com/img/2021/06/16/210616052659440990.png