NATting OpenVPN -> IPSec

Started by maxxer, February 25, 2020, 03:04:53 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 25, 2020, 03:04:53 PM
Hi.
I've an established IPSec tunnel going from our LAN to a remote network.  Then I have an OpenVPN tunnel for accessing our LAN from outside. I need to NAT OpenVPN network to the IPSec tunnel, because I cannot manage the other endpoint to add a new network.

In pfSense I added a second P2 entry with the OpenVPN subnet and I was able to NAT it to the LAN address. In OPNsense I understand I need to use BiNAT, but I must have missed something.

On IPSec I added a manual SPD entry with the OpenVPN net.
In Firewall > NAT > One-to-One I added an entry with OpenVPN NET as External, and firewall's LAN ip as Internal IP. Any as destination.

But this way it's not working. What's wrong?

Thanks
YetOpen S.r.l.
March 02, 2020, 03:46:37 PM #1
Solved with a simple Outbound NAT
YetOpen S.r.l.
Print
Go Up Pages1
User actions