VPN Server behind pfSense Firewall



  • Hi
    I have searched for hours, but not found a solution. Im using a pfSense firewall for my lan. Inside this lan, im running a l2tp/ipsec vpn server, which is set up correct. But now i need to configure my pfSense box, to allow connections from the internet. I have forwarded udp port 500 and udp port 4500. Ass i read, i need to forward protocol 50(esp), but i dont know how to do this in pfsense. Or do i need to do some other forwardings / configurations? For testing, i have replaced the pfSense box with a linksys router / firewall, opened the ports and enabled ipsec passthrough, and so the connection to the vpn server from outside works. Now i need to know, what i need to configure on the pfSense box.

    I hope you can help me



  • You know that pfSense has an IPSec VPN tunnel built in already? Why run a separate system to accomplish something you can just run on one?


  • LAYER 8 Global Moderator

    Yeah don't understand this sort of setup either, its always best to put the vpn connection at the actual edge, not forwarded to some box inside behind a nat.

    But to answer your question directly, just forward ESP which protocol 50.  Don't you want 51 as well AH?



Log in to reply