On 24.08.2017 12:38, Jimmy Olgeni wrote:
>
> Hi,
>
> I came up with a working setup of if_ipsec, and was wondering if now
> it would be possible to perform NAT before ipsec using the resulting
> 'ipsec0' interface.
>
> The native PF solution seemed to be this:
>
> nat on ipsec0 from 172.30.
Hi,
I came up with a working setup of if_ipsec, and was wondering if now
it would be possible to perform NAT before ipsec using the resulting
'ipsec0' interface.
The native PF solution seemed to be this:
nat on ipsec0 from 172.30.1.1/28 to any -> 172.30.1.1
But while it works on external i
