NAT on virtual interface

  • Hi,

    I have created a vlan interface on a pfsense in a private subnet with an 'uncommon' class c network range. This is because the remote network connects to many ike peers and requires a unique network address to connect to. I create a vlan'd interface as well as one or two CARP VIPs on it and the tunnel comes up fine and the remote end can ping these VIPs.

    I now need to establish 1-to-1 NAT mappings to between these VIPs and hosts on the private LAN subnet so that the remote network can get to them.

    Even with NAT mappings and rules on the vlan interface to the LAN subnet, nothing is getting across. Am I missing something or is there a better way to terminate a remote network on onto my pfsense using a different subnet address and allow them into the LAN?

    thanks in advance.

Log in to reply