Tim A. Hall-Woodcock wrote:
Hello,
I am trying to track down some info on how to hide my private IP's when
connecting to a remote VPN using pfSense. Can anyone help with
configuration or give me some links to something that may help?
Apparently the VPN I am connecting to won't allow private IP's as they
have thousands of tunnels and conflicts always happen.
Thanks
Tim.
Tim,
I'm not exactly sure how you can accomplish this with pf. If I
understand your problem correctly, you need to NAT the source address of
traffic that originates from your private network before it gets
processed by IPSEC. But 'many to one' NAT is performed as packets pass
out an interface in pf. This would be fine if IPSEC processing happened
after pf NAT processing but I think the opposite is true :(
If you own a block of public addresses, you could easily perform 1 to 1
nat ( binat ) which can be applied to private network traffic as they
pass in your private network interface. This allows the translation to
happen before the packets are processed by IPSEC on the outbound path of
your public network interface.
Hope this helps,
-Matthew
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
