OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Archive »
  • 17.7 Legacy Series »
  • IPSec LAN-to-LAN Source IP
« previous next »
  • Print
Pages: [1]

Author Topic: IPSec LAN-to-LAN Source IP  (Read 2226 times)

mitra7

  • Newbie
  • *
  • Posts: 13
  • Karma: 0
    • View Profile
IPSec LAN-to-LAN Source IP
« on: January 18, 2018, 06:51:45 pm »
# Interfaces
WAN - XX
LAN - 192.168.1.51/24
LAN 1 - 192.168.65.0/24
LAN 2 - 10.50.53.254/24

# IPSec Phase 2
Local Network: 10.50.53.254/24
Remote Network: 192.168.190.113/32

Hello,

I have an IPSec connection established, however if I try to ping or do curl from the terminal I cannot, only by specifying the IP Address.

I have to do:
curl --interface 10.50.53.254 http://192.168.190.113

If I do without specifying the source address the traffic isn't routed through the IPSec interface (enc0).

Some help is highly appreciated.
Logged

mitra7

  • Newbie
  • *
  • Posts: 13
  • Karma: 0
    • View Profile
Re: IPSec LAN-to-LAN Source IP
« Reply #1 on: January 19, 2018, 03:04:47 pm »
I managed to solve my problem by removing the routes that were added:
route del 192.168.190.113
route del 192.168.190.116

Then I did:
route add 192.168.190.113/32 -iface vtnet3
route add 192.168.190.116/32 -iface vtnet3

Is there any way I can do this through the webpanel?
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Archive »
  • 17.7 Legacy Series »
  • IPSec LAN-to-LAN Source IP
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2023 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2