Hi *,
I have the following setup:
A:
ikev2 '2router' active esp \
from A.A.A.A/32 to C.C.C.C/32 port 9001 \
local A.A.A.A peer 188.194.145.145 \
srcid a.home.arpa dstid b.home.arpa \
rsa \
config address 10.0.5.100
B:
ikev2 '2router' passive esp \
from A.A.A.A/32 to C.C.C.C/32 \
peer A.A.A.A local 188.194.145.145 \
srcid b.home.arpa dstid a.home.arpa \
rsa \
config address 10.0.5.1 \
config protected-subnet C.C.C.C/32
A's pf.conf:
match out on enc0 all nat-to 10.0.5.100
Whatever I do the packets that reach B have source address of A's public
interface and are not routed but dropped. The above config is just the
last variation. What am I doing wrong?
I'd appreciate your help so much.
Thank's alot.
Best regards,
Stephan
