Show Posts
1
General Discussion / IPSEC NAT
« on: December 03, 2018, 11:12:57 am »
Hi,
OpnSense 18.7.8 in place with the following Problem on an IPSEC site-to-site tunnel
IKEv1 Tunnel with two phase 2 Traffic Selectors:
Local LAN: 192.168.100.0/24
Local Subnet Phase 2: a.b.c.132/30
Remote Subnet Phase 2: x.y.z.0/24
Local LAN: 192.168.100.0/24
Local Subnet Phase 2: a.b.c.132/30
Remote Subnet Phase 2: x.y.z.0/24
Tunnel is up and working
BINAT 1:1 Rule on IPSEC Interface
External: x.y.z.134/32
Source: 192.168.100.11/32
Destination: x.y.z.37/32
Manual SPD Entry: 192.168.100.11/32
FW Rules -> IPsec Ipv4 any any allow all (for testing)
However, its not working. The remote end x.y.z.37/32 is not reachable.
Can anyone help pls?
Thanks and regards,
Michael
OpnSense 18.7.8 in place with the following Problem on an IPSEC site-to-site tunnel
IKEv1 Tunnel with two phase 2 Traffic Selectors:
Local LAN: 192.168.100.0/24
Local Subnet Phase 2: a.b.c.132/30
Remote Subnet Phase 2: x.y.z.0/24
Local LAN: 192.168.100.0/24
Local Subnet Phase 2: a.b.c.132/30
Remote Subnet Phase 2: x.y.z.0/24
Tunnel is up and working
BINAT 1:1 Rule on IPSEC Interface
External: x.y.z.134/32
Source: 192.168.100.11/32
Destination: x.y.z.37/32
Manual SPD Entry: 192.168.100.11/32
FW Rules -> IPsec Ipv4 any any allow all (for testing)
However, its not working. The remote end x.y.z.37/32 is not reachable.
Can anyone help pls?
Thanks and regards,
Michael