Diego, I had the same problem (have a pfSense acting as VPN client, and from the server I can ping the other side, from the lan I can't). Here's what you have to do:
First, disable automatic outbound nat rules, or else this will only work for a few seconds Second, edit /tmp/rules.debug and add the line "nat on tun0 from YOUR-LAN-SUBNET/24 to any -> (tun0)" bellow "Outbound nat rules" Tird, save and run "/sbin/pfctl -f /tmp/rules.debug" More info at http://cvstrac.pfsense.com/tktview?tn=1466 Sex, 2008-05-09 às 01:56 -0300, Diego A. Gomez escreveu: > 2008/5/9 Chris Buechler <[EMAIL PROTECTED]>: > > On Fri, May 9, 2008 at 12:44 AM, Diego A. Gomez <[EMAIL PROTECTED]> wrote: > >> How I can to write a nat rule in command line? > >> > > > > you don't. > > > > you can manually edit config.xml, add the rule, remove the > > config.cache and reload the filter rules but that's not suggested > > since you could blow up your config. > > I need to write a nat rule for tun0 (VPN) interfase > Can I do it through config.xml? > > Thanks! > >
