IPSec - Clashing networks
-
I'm trying to setup an IPSEc tunnel between my pfSense 2.0.1 and the other party's juniper firewall.
They already have a VPN connection with another party which uses my LANs addressing scheme 10.10.10.1/24
So I need to somehow NAT 10.10.10.6 as 172.16.5.6/32.It that possible?
How would I go about it?Thanks in advance.
-
You can't do that on 2.0.x.
You can do NAT+IPsec easily on 2.1, there is an additional field under your Phase 2 local subnet where you can define a NAT network, you'd just put a non-conflicting subnet there and that's what the other end would use for their Phase 2 settings.
-
How stable is 2.1?
Would I get away with using it on a production system? -
Many people already are. It's perfectly stable for most deployments. There are still a couple rough edges here and there but not ones that most people would hit.