Am 19.10.2011 um 19:20 schrieb "Ståle Johnsen" <<mailto:[email protected]>[email protected]<mailto:[email protected]>>:
Hi and thanks for your reply. It isn't a problem building the ipsec connection itself, but the destination end has a business requirement to not route other private adresses into their network, just public adresses. But as I understand this is not possible with pfsense? Here is some documentation about the subject with cisco: <http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080094634.shtml> <http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080094634.shtml> http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080094634.shtml Hi, I think you need a second pfsense box. One for the NAT between your private subnet and public IPs and a second for the vpn. NAT | Private --> pfsense --> public --> pfsense --> vpn Bf
_______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
