Does not have a public address and is behind NAT
-
Hello I have two pfsense. One of them has a public IP address. The second one does not have a public address and is behind NAT. I need to connect them using IPsec. I have previously worked only with openvpn and there are no such problems. Is this possible? I can't get the tunnel to install.
What should I specify in the remote host? zeros don't work, tried internal IP but the tunnel doesn't go up. Thanks for your help -
@testsia said in Does not have a public address and is behind NAT:
What should I specify in the remote host?
See here : IPsec Site-to-Site VPN Example with Pre-Shared Keys so the other side, or Remote Gateway must be the IP or host name of that end point.
You said that one of the end point "Does not have a public address .... " and after reading the instructions, I tend to say : No IPSEC for you (I hope to be wrong of course).
-
@Gertjan said in Does not have a public address and is behind NAT:
instructions
I followed all of these instructions. But in the example there are two public IPs, but I only have one. I understand that it is not possible to bypass the restriction. It is a pity. -
@Gertjan said in Does not have a public address and is behind NAT:
Managed to solve the problem.
- You need to enter any fictitious name and your external IP in DNS Resolver. I entered both my pfsense on one and the second pfsense.
- In phase 1 you need to register.
After which everything started working.
- You need to enter any fictitious name and your external IP in DNS Resolver. I entered both my pfsense on one and the second pfsense.
