Eugen Leitl wrote:
I used to have a nice pre-shared key IPsec tunnel between
two m0n0walls/pfSenses, running in NAT. Worked very nicely.
However, I now have a transparent bridge with a public /24 network,
and whenever I activate the tunnel I no longer can ping any
host on the network (the firewall included) from inside my
home firewall (NATted).
Is there a trick to it, or does this configuration simply not work?
In a transparent bridge setup, the gateway of the hosts on the bridge
isn't going to be pfsense, it'll be something on the outside interface.
If you have a routed subnet setup on an OPT interface this will work fine.
