NAT Source network for VPN



  • Hi,

    I have to setup a VPN with another company - our internal address ranges clash so they are asking me to NAT our source network to a specific single IP that they supply eg. 10.255.166.1 - is this possible with PFsense & if so how would I go about doing it ?

    Many thanks



  • With OpenVPN this is possible.
    Not sure about IPSEC.

    You would assign the OpenVPN interface as an OPT.
    Then enable Advanced outbound NAT and enable NATing for the OpenVPN interface.



  • Unfortunatley I need to use IPsec



  • Did anyone find a solution to this? I have the same problem at one of my customers locations.
    They have LAN addresses which are already in use at the remote location. I would like to source NAT the IPSec connection to the firewall's WAN address or similar.


  • Rebel Alliance Developer Netgate

    There is no solution for IPsec right now. It's a limitation of the underlying software.

    There was a bounty open with a proposed solution but the funding was removed before any work could be completed, and it required some lower-level changes in C code in the software being used.

    Check the expired bounties forum for more details.


Locked