Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Route all subnet traffic over specific IPSec tunnel

    Scheduled Pinned Locked Moved IPsec
    1 Posts 1 Posters 129 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      shaunmccloud
      last edited by

      Hello,

      I have an IPSec tunnel from home to a Meraki MX-95 in the data center. Due to the way Meraki handles site-to-site VPNs with non-Meraki devices, I can't do a 0.0.0.0/0 P2 entry on my pfSense box; I have to list each exported subnet on the Meraki site as a P2 entry on my pfSense box. This leaves me with 11 P2 entries. It's not a problem; it connects and works. The issue is that this leaves me with a split-tunnel VPN, which I do not want (some of our customers don't allow this). I cannot figure out how to add a gateway/route on the pfSense side to force all traffic on my work subnet at home through the Meraki without having to set it up in Windows every time I boot my laptop, which I would prefer not to do.

      If I try to create a gateway and enter any IP on the Meraki, I get an error stating that it doesn't live on one of the chosen interface's subnets, which makes sense. I know this isn't a normal use case, but it is what I have and any help is greatly appreciated.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.