Remote Subnet



  • I have successfully set up an IPsec tunnel between my 1.2.3-RELEASE pfSense box and a Cisco ASA 5510.  Currently, I am using a /23 Remote subnet in the config to access the 192.168.110.0/24 and 192.168.111.0/24 networks on the other side.  I would now like to be able to access additional subnets but it seems that there wasn't very much thought with the network design, as the other remote networks are 192.168.112.0/24, 192.168.113.0/24, and 192.168.114.0/24. Apparently 111 and 112 cross a CIDR boundary.  What's the best way to work around this design?  Is is possible with a single config?  Or would I be better off creating a second tunnel that handles the 112 and higher networks?



  • I think a second tunnel is the only way to make this work.  also, 2.0 now supports multiple P2 tunnels.

    Roy…


Log in to reply