Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Multiple Network Passing Tunnel

    Scheduled Pinned Locked Moved IPsec
    3 Posts 2 Posters 2.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H
      hsiang
      last edited by

      below are my configuration

      192.168.1.0/24 –-------                                                  LAN                WAN                    WAN                  LAN
      10.10.10.0/24 ---------- switch with routing interface -------------PFSense A-------- Internet---------PFSense B----------199.1.1.0/24
      172.32.0.0/15 ----------                                          192.168.1.1

      All the 3 network behind PFSense A will need to access to Network 199.1.1.0/24 behind PFSense B using IPSEC Tunnel.

      1. To Configure IPSec Tunnel in PFSense A, under local subnet, what is the type i should choose? If for type Network, how i can add in multiple network entries?

      2. To Configure IPSec Tunnel in PFSense B, under remote subnet, what entry i should put in since I have total 3 networks need to access?

      1 Reply Last reply Reply Quote 0
      • H
        hoba
        last edited by

        Please search the forum, this has been answered in detail already several times.

        1 Reply Last reply Reply Quote 0
        • H
          hsiang
          last edited by

          thanks Hoba.

          I had searched the forum, the advice is having parallel tunnel with unique identifier.

          1. In the IPSec Tunnel setting, in phase 1, i choose identifier as My IP address and in pre-shared secret, i put in the entry identifier - IP of the box at remote site and the shared secret. In order to have unique identifier as mention, i will not use My IP address? Sorry I am a bit blur in this Identifier setting.

          2. If the tunnel i pair up with a checkpoint firewall, so at the checkpoint side i will need to create multiple tunnel also? In check point i did not see any setting for identified? how i can make the tunnel unique?

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.