4. IPSec forwarding from one subnet to another

IPSec forwarding from one subnet to another

  • J

    Hi, we replaced our ASA with PfSense about 4 months ago and, so far, everything has been great! At the time of installation I had only used PfSense on my home network, so I haven't had much time with the system. Here's the problem I'm running into right now.

    We have a company that needs a site-to-site to access one of our servers to perform a maintenance on one of our server. The servers IP is 172.16.1.12. The company is already using this subnet in their ASA so they asked me to use 10.225.1.0/24 and forward that traffic to our server (172.16.1.12). I setup the VPN tunnel and it comes up, however it doesn't ping.

    I have created a 1:1 NAT rule that looks like this:

    I have also swapped the external IP to their internal subnet (198.140.232.0/24) which didn't work either.

    Next I tried creating a IPsec rule using their internal subnet to the "dummy" subnet.

    Here's the log:

    I don't know what else to do, as I've never dealt with something like this before on PfSense. Thanks for any help you can provide.  ???

    0
  • C

    That's only possible in 2.1, using the NAT defined within the P2.

    0
  • J

    @cmb:

    That's only possible in 2.1, using the NAT defined within the P2.

    Well that would explain why I couldn't get it to work. Thanks for the info!

    How stable is 2.1?

    0
  • C

    Very stable

    0
Locked
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2018 Rubicon Communications, LLC | Privacy Policy