Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPsec and static routes

    Scheduled Pinned Locked Moved IPsec
    3 Posts 2 Posters 2.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Z
      zunder1990
      last edited by

      I have two sites connect with an IPsec vpn. At my main site I have a layer 3 switch with a few vlans. From one of the vlans I can ping the internet and my gateway pfsense. But if I try to ping the remote site I cant. I can ping the remote site if I ping from the lan that is attached to pfsense. I ran a traceroute from the vlan and the gateway pfsense is sending the pings out over the wan link and not the IPsec. By the way I am using pfsense 2.0 How can I get the ping to go over the IPsec?

      Thanks
      Zach

      1 Reply Last reply Reply Quote 0
      • C
        cmb
        last edited by

        If traffic goes out to the Internet rather than across the tunnel, the source and destination IPs of that connection don't match your IPsec phase 2. They have to. Add another phase 2 or expand the existing.

        1 Reply Last reply Reply Quote 0
        • Z
          zunder1990
          last edited by

          Thank you that did the trick.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.