"
Hello,
I'm currently working on setting up an IPsec tunnel between Opnsense and Cisco FTD, and I'm facing an issue. My goal is to pass multiple subnets through a single SPI on Cisco FTD, but it seems to have limitations in doing so.
I've configured separate IPsec tunnels for each subnet on Opnsense, each with a unique SPI. However, when trying to establish the connection, it appears that Cisco FTD doesn't handle multiple subnets through a single SPI.
Is there a workaround for this limitation? Should I create separate IPsec tunnels on the Cisco FTD side for each subnet, or is there a more efficient solution?
I appreciate any insights or guidance on resolving this issue.
Thank you!
I'm currently working on setting up an IPsec tunnel between Opnsense and Cisco FTD, and I'm facing an issue. My goal is to pass multiple subnets through a single SPI on Cisco FTD, but it seems to have limitations in doing so.
I've configured separate IPsec tunnels for each subnet on Opnsense, each with a unique SPI. However, when trying to establish the connection, it appears that Cisco FTD doesn't handle multiple subnets through a single SPI.
Is there a workaround for this limitation? Should I create separate IPsec tunnels on the Cisco FTD side for each subnet, or is there a more efficient solution?
I appreciate any insights or guidance on resolving this issue.
Thank you!
