On 8/1/07, Paul M <[EMAIL PROTECTED]> wrote: > Bill Marquette wrote: > > It's worth noting that pfSense does this by default. Some IPSec > > concentrators also expect the udp traffic to source from port 500 and > > won't allow connections from arbitrary ports (Nortel Contivity is such > > a beast). And yes, it means we can only handle one ipsec connection > > to a given concentrator at a time. More than that should really use > > site-to-site vpn. > > can you set up multiple external interfaces/IP addresses and bind > pfsense's vpn termination point to the specific interface, and then have > multiple termination points?
Yes, if you have that option. I have coworkers that have installed pfSense and have multiple people connecting to my work behind it. They used 1:1 NAT to solve the problem. --Bill --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]