IPSec VPN from home to Internet definition ?
-
Hello all,
I am trying to do the following using pfs 2.0 BETA1 (lastest from today).
192.168.0.0/24 – Home-GW ==vpn=== Remote GW -- 0.0.0.0/0The idea is to "route" everything from 192.168.0.0/24 to Internet through the IPSec VPN.
I did that on 1.2.3-RELEASE, but now, when setting a destination as "0.0.0.0/0", it raises an error (0 bit as a network mask is now refused).
It is a bug ? Or am i wrong somewhere ?
Do you have any idea ?
Thank you.
Nicolas.
-
What exactly are you trying to acomplish? That doesn't make any sense. Or do you want to secure your WLAN or something? Home-GW is pfSense? Who is Remote GW?
-
Hi,
yes it makes sense ;-)
I am a remote worker, at home. I am accessing many Internet networks through a centralized GW. I am using a dynamic IP, and I need a fixed IP for network access control.
I want to use my VPN link to access between home and work for all destinations.So, I am configuring my local GW (not a pfsense, a linux IPSec gateway) to build a network using the following topology:
192.168.1.0/24 – GW (public dynamic IP) ======== PFS 2.0 ------ InternetMy question is only about topology and VPN. The destination topology (from my home point of view) is 0.0.0.0/0 (all networks).
We are planning to replace commercial IPSec solution using (another solution, so why not) pfsense, but NAT-T is required (so, we are using pfsense 2.0 .....)
So, we are trying to declare an IPSec configuration in the pfsense GUI, using local network 0.0.0.0/0.
But it is forbidden by the GUI.Nicolas.
-
Confirmed. http://redmine.pfsense.org/issues/show/352