Netgate SG-1000 microFirewall

Author Topic: IPSec phase2 with NAT/BINAT both sides fails to communicate  (Read 76 times)

0 Members and 1 Guest are viewing this topic.

Offline lifeboy

  • Newbie
  • *
  • Posts: 23
  • Karma: +0/-0
    • View Profile
IPSec phase2 with NAT/BINAT both sides fails to communicate
« on: February 09, 2018, 06:03:41 pm »
When I set up an IPSec tunnel with phase2 using NAT/BINAT, communication to the NAT'ed side stops.

When I remote the NAT/BINAT, all is well. 

I have read https://forum.pfsense.org/index.php?topic=132486.0 which seems quite similar, except that my far side is not Azure, but another of pfSense box that I have control over. 

Of course, if this was my "live" setup, I could just not use NAT, but in the final setup, I need to connect to a service provider who doesn't allow us to do comms over private ip addresses.

Has anyone run into this and how did you fix it?