NAT before IPsec VPN
-
Dear All,
I would like to thank you for implementing the NAT before IPsec VPN* on pfSense. Well done guys.
Our tests with pfSense 2.1.RC1 are possitive, it works great!
Just for the records, the implementation it is done on raccoon configuration right?
sainfo subnet 192.168.10.0/24 any nat subnet 192.168.20.0/24 any subnet 192.168.30.0/24 any
Adding the configuration (nat subnet/host) manually** on previous pfSense (2.0.X) will work too, or you need the latest raccoon 0.8.1?
Thanks,
- http://redmine.pfsense.org/issues/1855
** I know that when you save raccoon.conf will be overwritten
- http://redmine.pfsense.org/issues/1855
-
It required changes to racoon (patches) that are not present on pfSense 2.0.x.
-
Great job!
Once again thanks.
(I think i found the patches applied https://github.com/pfsense/pfsense-tools/blob/master/pfPorts/ipsec-tools-0.8.1/files/ipsec-nat.diff)
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.