[SOLVED] Exclude 10.0.10.0/24 subnet from IPsec traffic



  • Hello, All!

    I got pfSense 2.2.4, terminating IPsec tunnel. It works almost fine, there is P2 entry for 10.0.0.0/8 net and all packets destinated to 10.0.0.0/8 are going through that tunnel.

    I need to route traffic destinated to 10.0.10.0/24 subnet. As there are huge amount of /24 networks, I cannot create multiple P2 entries to exclude 10.0.10.0/24 by design. Its not an option.

    I just need one P2 entry for 10.0.0.0/8 for IPsec confguration and 10.0.10.0/24 subnet traffic routed to another router, not passing throug IPsec.



  • Solved - LAN based firewall rule, where you set exact gateway for traffic (Advanced features, Gateway). Worked like a charm for me.