Using pfsense as "Site to Client" VPN Client

  • Hi,

    i do have an end user VPN access to a foreign network. I use the Cisco VPN client on my computer. Works fine.

    Is it possible to establish this connection with pfsense? If yes, would it be possible to do a NAT so that i can access the other site of the VPN from my whole local network with the one IP i got assinged from the foreign network?
    Where to set this up? Just as IPSEC Tunnel? This looks like Site to Site VPN only for me.

    I just do not want to use the local VPN Client when pfsense could to this job too.



  • Rebel Alliance Developer Netgate

    No, it's not possible currently.

    It may be possible in the future (2.3 or later) but not now or in the next version.

  • Is it possible with any additional software which i may install at the pfsense machine?


  • I've hacked vpnc in before for testing purposes. It can be done, but it's far from easy or straight forward.

  • Rebel Alliance Developer Netgate

    On 2.2 strongswan can handle that, but we don't have options in the GUI to do it. It's capable of pulling an IP and supporting various Cisco Unity features when acting as a client. Not sure if/when that might ever show up, it's not a very common requirement.

Log in to reply