I've been trying to set-up a VPN like this:
Basically create an IPSEC VPN connection as a mobile user from a machine where I work to my home network. On my home network I have an ethernet router provided by my ISP which is connected to the WAN port of my pfSense firewall.
I can create the tunnel and everything seems almost hunky dory:
Even the security associations and policies get created:
But all is not well. I cannot interact with anything on either side of the VPN tunnel. I have created an IPSEC firewall rule allowing any to any. I have forced NAT-T wherever possible. I have automatic outbound NAT rules enabled. I suspect there is a NAT issue. But before I look at that, something else strikes me as odd:
Look again at the tunnel end points in those last two screen shots. They are using the WAN IP address of the firewall itself, not my external IP. Could this be the problem?
Or are the automatically generated outbound NAT rules over-writing some BINAT-iness?
I know a couple of you use pfSense, so I figured it was worth a mention here. I have asked elsewhere too.
I have recently upgraded to pfSense version 2.2, so my issues could be upgrade related.
If you have any idea whether I should be able to even do what I'm trying to do, it'd be good to know I'm not losing the plot.
I've been battling away for far too long in getting this far and I'm now royally confused
Afasoas