Am Dienstag, den 19.04.2011, 13:48 -0400 schrieb Chris Buechler: > > I think I remember the solution being to add a static route on the pfSense > > box, but I can’t remember precisely what had to be added. > > http://doc.pfsense.org/index.php/Why_can%27t_I_query_SNMP,_use_syslog,_NTP,_or_other_services_initiated_by_the_firewall_itself_over_IPsec_VPN%3F > Thanks this also helped me :-)
But I think there needs to be some clarification on what the different choices do for my identifier / peer identifier - I was only able to establish a site-to-site vpn using my ip address / peer ip address. And to establish a pfsense to ipfire (strongswan) I have to set some LeftID / RightID (in strongswan terminology) which look like "@freetextstring" Has anybody tried this already or using fqdn instead of my/peer ip address? greetings Commander1024
signature.asc
Description: This is a digitally signed message part
