So I am not sure which forum this belongs in -- not sure if this is a NAT or IPSEC issue or what
I have a local network behind a pfsense router, it is connected via an ipsec tunnel to a remote google cloud compute environment, in that environment, there is a wireguard vpn server that people connect to and they can access the LAN behind the pfsense router and everything else they're allowed to
this has always worked, and instantly breaks in 24.03, and is instantly fixed by reverting to 23.09
otherwise the 24.03 update was fine
where should i start here?
normally when a client connects to the wireguard server, their traffic appears to originate from the ip address of the wireguard server -- this server can still ping devices on the other side of the ipsec tunnel and vice versa, ssh connections both ways are possible, but clients connected to it cannot access anything in the google cloud or the local lan
thanks if anyone has any ideas