Upstream box isn't pfSense and does VERY little. Nothing I can do on the downstream box (pfSense) ?
---- On Sat, 20 Oct 2007, Bill Marquette ([EMAIL PROTECTED]) wrote: On 10/20/07, Michael Richardson wrote: > One of the primary reasons I wanted a dual-wan configuration was so our 1st > 15Mb line wasn't saturated with large file transfers, which we do regularly. > The next reason is for fail-over and/or load-balancing. > > That said, I've implemented a NAT device to get the 2nd line on a separate > gateway (as far as pf is concerned) and tried to setup ipSec on the WAN2, > but I hadn't previously considered NAT traversal with IPSEC which is now an > issue. This means that the local pf box doesn't see the remote gateway, it > see's the NAT'd IP. > > I do use advanced outbound NAT to force certain traffic out WAN2. That said, > how do I get IPSEC working over WAN2 (aside from changing the selected > interface in the SA. Terminate the vpn on the upstream box? --Bill --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]