IPSEC Tunnel with NAT on local ip



  • Hello,

    I am in desperate help of setting up an IPSEC tunnel. I know all the settings, except one thing. The other end wants me to identifiy myself with another IP than my computer on my end has.

    MY local computer: 10.0.1.22
    MY local PfSense: 10.0.1.1

    Local Subnet: 179.28.24.2 (The IP They want me to identitify as)
    Remote Gateway: 199.235.5.54 (WAN Ipadress)
    Remote Subnet: 199.181.63.81 (The IP i'm trying to communicate with)

    I think this is the right setup? The only problem is now. How do i get the traffic rom 10.0.1.22 to be routed to the IPSEC tunnel, and have source ip of 179.28.24.2? The ipsec tunnel isn't even started when not having my real local ip as local subnet.



  • I beleive you are trying to Policy NAT, which pfSense cannot do at this time (1.2.2). I am not sure in what version, but I heard that functionality will be added in the future.
    Once it is, pfSense will replace my Cisco HW, but I fear it will be a very long wait.


Log in to reply