4. "routing" to network behind/beside ipsec tunnel

"routing" to network behind/beside ipsec tunnel

  • A

    hi,

    i've a setup as following:

    NETWORK A  <-LAN-> IPSEC-ROUTER <-IPSEC over WAN-> PFSENSE <-LAN-> NETWORK B
                                                                                                <-LAN-> NETWORK C

    NETWORK A = 10.10.0.0/24
    IPSEC-ROUTER = 10.10.0.1/24 & one public ip
    PFSENSE = 10.10.1.1/24, 10.10.2.1/24 & one public ip
    NETWORK B = 10.10.1.0/24
    NETWORK C = 10.10.2.0/24

    the ipsec tunnel is working properly. NETWORK A and B can share informations.
    for the lack of supporting more then one phase 2 entry at the IPSEC-ROUTER in NETWORK A i need a solution to reach NETWORK C from NETWORK A and vice versa. the IPSEC-ROUTER is a AVM Fritzbox 7390 with a custom ipsec implementation. i can configure the Fritzbox to send packets to NETWORK C over the IPSEC tunnel as described here.

    how can i configure PFSENSE in order to accomplish information exchange between NETWORK A and NETWORK C?

    0
  • Rebel Alliance Developer Netgate

    On 2.0 you can just add a second phase 2 definition to cover that extra subnet. On 1.2.3 it's a little trickier but it can work:

    http://doc.pfsense.org/index.php/IPsec_with_Multiple_Subnets

    0
  • A

    thx supernetting works!

    0
Log in to reply
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy