NAT issue behind Ipsec IP for local network
Here is the simple diagram to get the basic picture of scenario
I've 3 interface on my Pfsense firewall
WAN : 126.96.36.199
Ipsec : 192.168.3.2/32
I've created IPsec successfully and I can ping site-B ipsec ip 192.168.3.1 from my firewall.
Site-B allowed traffic from only 192.168.3.2 and I dont have controll on that firewall/site . Now I want to NAT my lan traffic via ipsec tunnel ,so my I can access 192.168.3.1 from my lan network .I'm lost how do I get it done .
Any one have any idea?
Does site-B need to allow my internal subnet as well to make it work ?
I'm trying to edit this post as solved , but failed to edit keep getting popup message you can edit post from 36000 hrs .
Any way I use NAT/BINAT option again in phase-2 of ipsec.
Local : 172.16.190.0/24
NAT-BINAT : 192.168.3.2/32
remote : 192.168.3.0/30
that's all and reconnect the ipsec tunnel and every thing worked like a charm . I didnt add any firewall extra rule any where .