"Hi members
Because we are no longer happy with the license politic from Cisco, we want to exchange all the ASA's with an alternative solution. At the moment, we evaluate also OPNsense. It very different than ASA, but it's nice, the frontend is fast and intuitive :)
But at the moment i stuck on this problem:
An side A we have around 25 subnets and VLAN's, on the side B around 5. No all of the subnets have to go through the tunnel, but the most of them.
I go through the steps on https://docs.opnsense.org/manual/how-tos/ipsec-s2s.html, but i don't have any chance to setup more than one LAN-IP on the local and destination side.
Maybe it works with a group of interfaces for the local side, but not so for the destination. If i have to setup all as a combination with each other, i have to setup a lot of them.
What is the correct way to put this all in one phase 2 rule? There is an option "Mode":"Transport", but i can't find any documentation about, maybe this is the solutions?
gruss ivo
