IPSEC VPN with local subent NAT



  • I want to NAT my local subnet in IPSEC tunnel. For example I have a subnet with 192.168.35.0/24 with translated address of 10.254.36.25/32. This will add security in my local network.. How to configure this on PFSense?



  • NAT is not meant to be implemented for security reasons. You can just block all incoming traffic on the virtual IPsec interface for example and that's it.

    (Long live IPv6, so we can finally ditch NAT for good…)



  • Thanks for the help but I already figure out this problem.


Log in to reply