Dear Support, I have a client with a pfSense install and he is required to interface with a large research hospital. The hospital requires that all IPsec endpoints and encrypted hosts fall within Internet routable IP-space
Out pfSense box is as follows: 1.1.1.1 -- WAN Gateway 1.1.1.2 -- pfSense WAN IP address 1.1.1.3 -- pfSense CARP vIP. 1-to-1 NAT: 192.168.1.211 The hospital wants us to bring IPsec to 1.1.1.2, and then access 1.1.1.3 (which is really 192.168.1.211). Is there a feasible method for performing this work directly with pfSense? Should I request another block of IPs, make a DMZ with routable IPs and solve it that way? Sincerely, Joshua --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
