Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSec setup in a strange network environment

    IPsec
    1
    2
    495
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mlimo
      last edited by

      Hi All,

      I have a client who has recently put in a new internet service.  The external facing part of this service is managed by the telco, and we have no control of it.
      The layout is this

      WAN IP Address : 101.178.17x.x
      This IP terminates on a Cisco router (which we have no control over - it is fully Telco managed)

      This device has IP 192.168.26.1
      Our pfsense VM is 192.168.26.254

      All traffic to the WAN IP is port forwarded to our device 192.168.26.254
      We have been able to create firewall rules for email, ssh, web etc without any drama.

      The problem is now we need to set up 6 IPSec tunnels - which are all presenting the 192.168.26.254 IP as its remote endpoint.

      Is there a way to setup the live IP on this pfSense setup to enable IPSec to connect?
      (I have previously usedd ProxyARP addresses on connections with multiple IP's) but I dont think this config suits.

      Hope I've explained my situation well enough.

      Marcus

      1 Reply Last reply Reply Quote 0
      • M
        mlimo
        last edited by

        Anyone at all have any suggestions?

        I need to

        1. Get the public IP from the cisco unit presented by the pfsense box for VPN connectivity
        2. Configure a way for the private IP to connect to the remote sites
        1 Reply Last reply Reply Quote 0
        • First post
          Last post