OPNsense Forum

Archive => 17.7 Legacy Series => Topic started by: tobia on January 10, 2018, 12:19:12 pm

Title: Can I configure split networking for IPsec clients?
Post by: tobia on January 10, 2018, 12:19:12 pm

Is there a way to give IPsec clients a list of subnets that should be routed through the tunnel?

For instance, can I have IPsec clients route the LAN subnet, DMZ subnet, and a few other custom subnets through the tunnel, while everything else would exit through their regular Internet connection?

How would I do that?

Is this generally considered bad practice?

Title: Re: Can I configure split networking for IPsec clients?
Post by: bartjsmit on January 10, 2018, 07:31:25 pm

I know this doesn't answer your question, but pushing routes is trivial in openvpn.

Bart...

Title: Re: Can I configure split networking for IPsec clients?
Post by: tobia on January 17, 2018, 10:56:44 am

Right, I will try OpenVPN in the future.

Does anybody know if it can be done in IPsec, and how?