Ipsec to host group

  • Hi all,

    is it possible to create a ipsec vpn to a group of host instead of to single host (in Local subnet field)?



  • You mean a single tunnel to multiple endpoints?
    But you can have a pfSense on both ends of the tunnel and have the pfSense on the other end of the tunnel as gateway for your remote subnet.

  • OK

    at the other end it is a cisco ASA,

    they only want to see 3 host on our LAN.

    they try to implement this:

    Extended IP access list ACL-XXX

    10 permit ip host

    20 permit ip host

    30 permit ip host

    any idea ?

Log in to reply