NAT to VPN IPSec



  • Hi all,

    I have problem with Nat and need help from all of you.

    My networ have 2 LANs (Site A), LAN1 make a tunnel VPN IPsec to (Site B). The tunnel was up and I can ping from LAN1 to site B. Problem is i can't access site B from LAN2 , I was make NAT Rule base on LAN1 interface with source address is LAN2 Address and destination address is Site B address. I also make rule for access between LAN1 and LAN2 and working well.

    • VPN Tunnel only accept 1 IP from site A so i think solution is only NAT but may be i do something are incorrect

    Thanks for any help.


  • Rebel Alliance Developer Netgate

    You can't do NAT with IPsec on 1.2.x, what you really need is to setup two parallel IPsec tunnels (Or switch to OpenVPN and just route the traffic properly).



  • Thanks for your reply,

    I running on Ver 2 beta 4 snapshot Sep 9.

    I have no choice switch to use openVPN because my situation is one site was setup VPN over IPSec by Cisco ASA 5500 and they only allow us connect to them on 2 IP, therefore i must find the way to NAT that IP for connect to VPN from inside local network with difference subnet.


Log in to reply