VPN Server behind pfSense Firewall
I have searched for hours, but not found a solution. Im using a pfSense firewall for my lan. Inside this lan, im running a l2tp/ipsec vpn server, which is set up correct. But now i need to configure my pfSense box, to allow connections from the internet. I have forwarded udp port 500 and udp port 4500. Ass i read, i need to forward protocol 50(esp), but i dont know how to do this in pfsense. Or do i need to do some other forwardings / configurations? For testing, i have replaced the pfSense box with a linksys router / firewall, opened the ports and enabled ipsec passthrough, and so the connection to the vpn server from outside works. Now i need to know, what i need to configure on the pfSense box.
I hope you can help me
You know that pfSense has an IPSec VPN tunnel built in already? Why run a separate system to accomplish something you can just run on one?
Yeah don't understand this sort of setup either, its always best to put the vpn connection at the actual edge, not forwarded to some box inside behind a nat.
But to answer your question directly, just forward ESP which protocol 50. Don't you want 51 as well AH?