I’ve setup IPSec VPN with PSK on ipfire v154 and the main problem is that connected roadwarrior clients only resolves DNS naming when IPSec’s Local Subnet is set to 0.0.0.0/0.
And setting it to 0.0.0.0/0 all the Roadwarrior’s traffic is routed through our Office’s ipfire-firewall…
I would prefer to have split-tunneling but if I set IPSec’s Local Subnet to: 192.168.64.0/24 then I can’t ping any host with domain *.office.local
Here are my settings:
Green network: 192.168.64.0/24
DHCP-Server is up with domain: office.local on 192.168.64.1
Host-to-Net Virtual Private Network (RoadWarrior): 10.220.70.0/255.255.255.0
IPSec Local Subnet: 192.168.64.0/24
I’ve tried also in
but it doesn’t resolve any DNS naming.
Split-Tunneling works for OpenVPN Roadwarriors though…
I’m wondering if split-tunneling for IPSec is possible on ipfire ? Or are there any restrictions on ipfire ?