Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Routing trough IPSec to segment behind firewall

    Scheduled Pinned Locked Moved Routing and Multi WAN
    2 Posts 2 Posters 933 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T Offline
      thuizt
      last edited by

      Hello,

      We have 3 pfSense firewalls routed behind one another.

      10.1
      A    -  B    -    C
      192  10.0      172

      There is an IPSec tunnels between A and B and a subnet (10.1) between B and C
      Now we want to route from A to C.

      Firewall A should have a static route to the 172 subnet through the gateway  on subnet on 10.0
      However as this is a IPSec tunnel I cannot add the gateway as the 10.0 gateway lies outside the 192 subnet.

      Is this not possible or am I overlooking something.

      Any help greatly appreciated.

      Thanks

      1 Reply Last reply Reply Quote 0
      • C Offline
        cmb
        last edited by

        Add a matching phase 2. IPsec doesn't route, traffic has to match the P2 local+remote.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.