Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Force public ip down VPN

    IPsec
    2
    2
    1.5k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jshailes
      last edited by

      We have a setup site1–site2--site3 all done with ip sec where:
      site1: 10.44.35.0
      site2: 10.221.2.0
      site3: 171.28.18.0

      Since site3 is using a public address for some weird reason I think the traffic is avoiding the VPN, would this assumption be correct? If so how can I rectify the issue, e.g. force 171.28.18.* addresses down the tunnel?

      Thanks,

      James

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        If the subnet is specified as the remote subnet for the IPsec tunnel, it should already be using the tunnel.

        That said, IPsec doesn't route in the traditional sense. If traffic matches the tunnel definition, it's just grabbed and put on the tunnel.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.