I have successfully set up an IPsec tunnel between my 1.2.3-RELEASE pfSense box and a Cisco ASA 5510. Currently, I am using a /23 Remote subnet in the config to access the 192.168.110.0/24 and 192.168.111.0/24 networks on the other side. I would now like to be able to access additional subnets but it seems that there wasn't very much thought with the network design, as the other remote networks are 192.168.112.0/24, 192.168.113.0/24, and 192.168.114.0/24. Apparently 111 and 112 cross a CIDR boundary. What's the best way to work around this design? Is is possible with a single config? Or would I be better off creating a second tunnel that handles the 112 and higher networks?
I think a second tunnel is the only way to make this work. also, 2.0 now supports multiple P2 tunnels.