Hi, I am having trouble wrapping my head around this one. We need to connect to a remote Cisco ASA VPN that has a overlapping private network. The idea is to connect using PAT with a single private IP on our end as an endpoint. Just having some trouble visualizing how this would work in pfSense IPSEC VPN configuration and rules.
Remote VPN endpoint <-------> pfsense/WAN ----??private Virtual IP attached to WAN interface say 10.10.32.70/32 pfSense private LAN network address space - say 192.168.0.0/16 Set static route on the pfsense box for the remote network - say 10.10.14.0/24, it will point to the Virtual IP attached to pfsense/WAN as the router. Say 10.10.32.70/32 The remote side of the VPN definition will point to our pfsense WAN IP and the Virtual private IP attached to WAN will be the endpoint. Am I thinking logically? I haven't thought about the rules yet... just the overall structure in pfSense. Thanks, -- Mark Street, D.C., RHCE Chief Technology Officer Alliance Medical Center (707) 433-5494
