New Content #12787: Convert "Routing Internet Traffic Through a Site-to-Site IPsec Tunnel" recipe to VTI or add VTI as an alternate strategy - pfSense Docs - pfSense bugtracker

Actions

Copy link

New Content #12787

open

Convert "Routing Internet Traffic Through a Site-to-Site IPsec Tunnel" recipe to VTI or add VTI as an alternate strategy

Added by Christian Borchert almost 3 years ago. Updated over 2 years ago.

Status:

New

Priority:

Normal

Assignee:

Category:

IPsec

Target version:

Start date:

Due date:

% Done:

Estimated time:

Description

Page: https://docs.netgate.com/pfsense/en/latest/recipes/ipsec-s2s-route-internet-traffic.html

Feedback:

This could be updated for routed ipsec (vti)

Actions

Copy link

Updated by Jim Pingle over 2 years ago

Tracker changed from Todo to New Content
Subject changed from Feedback on pfSense Configuration Recipes — Routing Internet Traffic Through a Site-to-Site IPsec Tunnel to Convert "Routing Internet Traffic Through a Site-to-Site IPsec Tunnel" recipe to VTI or add VTI as an alternate strategy

The current info isn't bad or outdated, VTI isn't necessarily better either. For that to work with VTI you'd likely need to change the filter mode which isn't viable without breaking other tunnel mode IPsec. If someone has more than one tunnel mode IPsec entry they may not be able to switch it to VTI.

Might make more sense to have a separate doc, or section of that doc, that covers doing the same thing in VTI rather than replacing it.

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Docs