Migrate VPN tunnel
-
Hello guys!
I'm trying to migrate a working IPSsec VPN tunnel from Netgear SRXN3205 to pfsense / Netgate 2100. The VPN tunnel is used for sending / receiving files via a FTP server / client at both ends.
I have managed to define and get the tunnel up and running, however I cannot establish a FTP session. In the IPsec status view I’ll see some outbound packets but no inbounds.
My guess is that I haven’t properly configured traffic selection (Phase 2) and/or the firewall. My current working Netgear setup is as follows:- Phase 1 goes between my public IP (firewall) and the remote gateway
- Phase 2 goes between my public IP (firewall) and the remote the remote FTP server / client
- Firewall rule allowing / forwarding traffic from the remote FTP server to local LAN address (my FTP server / client).
Migrate (1) - translates nicely into phase 1 settings in pfsense.
Migrate (2) - I’m not sure how to set Local Network I General of the phase 2 settings. Should I select “address” and put the public firewall IP here?
Migrate (3) – In my Netgear router, this is called LAN WAN rules / Inbound Services. My interpretation is that this firewall rule allows the defined inbound traffic while also forwarding it to a LAN address. How would the same be accomplished in pfsense ?
TIA