1. Home
  2. pfSense® Software
  3. IPsec
  4. IPSEC able to push route like OpenVPN?

IPSEC able to push route like OpenVPN?

  • S

    Hi all,

    I have configured IPSEC mobile access and I am up and running and able to hit anything behind the firewall via the IPsec tunnel for mobile clients. My question is, can you push routes for external hosts like you can in OpenVPN config? I am trying to push traffic for external hosts in remote locations over the tunnel. This is easily done with "push route" in OpenVPN but I do not know if/how this can be done in IPsec.

    0
  • jimp
    Rebel Alliance Developer Netgate

    No, you can't route traffic quite the same way with IPsec as you can with OpenVPN.

    With mobile tunnels this is a little more relaxed, but you still need to specify these subnets for the tunnel on the client side. If these networks are not locally reachable by pfSense you will also need to add manual NAT rules which will NAT the traffic from your mobile client IP(s) out the pfSense WAN.

    This is a little better in 2.0 where you can specify to send a list of accessible networks to the IPsec client, but you still can't specify arbitrary subnets.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy