4. IPSec Mobile Client Full Tunnel issue

IPSec Mobile Client Full Tunnel issue

  • J

    Hello,

    I have two pfSense boxes that have IPSec site-to-site setup and it works fine. Also on both I set IPSec mobile clients that work great.
    However, sometimes I want to be able to have full tunnel for the mobile clients and route all my traffic to the other site. The pfSense documentation says:
    Phase2: "Local Network: (the local network, e.g. LAN, or 0.0.0.0/0 to send everything over VPN)" and I did that but still no luck. What am I doing wrong?

    0
  • K

    You need to add additional p2 for mobile IPSec policy with remote subnet

    0
  • J

    @kapara:

    You need to add additional p2 for mobile IPSec policy with remote subnet

    For remote subnet you mean the subnet where I am or where I'm connecting to ?

    0
  • K

    Subnets need to be referenced at both ends so that traffic knows how to return

    0
  • K

    Your mobile vpn needs another p2 so that the mobile IPSec knows about the remote network.  It does not get that from the point to point.

    0
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2018 Rubicon Communications, LLC | Privacy Policy