Cant pass traffic between VPN tunnels
-
Hi All
Here's my setup. 3 sites. Site A hosts 2 OpenVPN tunnels acting as the Server. Sites B and C host OpenVPN clients which dial into Site A. VPNs are configured Peer to Peer (Shared Key) and are routed.
From SiteA I can ping Site B and Site C no problem. From Site B I can ping site A and similarly from Site C I can ping Site A without issue. The Problem is when I try to ping site C from B or B from C. I think it's most likely a routing issue but to me all the routes look ok. Routes from all 3 sites below:
Routing tables (SITE A)
Internet:
Destination Gateway Flags Refs Use Netif Expire
default 110.x.x.x UGS 0 51203 pppoe0
10.0.0.0/24 link#2 U 0 25215 re1
10.0.0.253 link#2 UHS 0 0 lo0
10.0.2.0/24 10.10.10.2 UGS 0 0 ovpns1
10.10.10.1 link#8 UHS 0 0 lo0
10.10.10.2 link#8 UH 0 0 ovpns1
10.10.10.5 link#10 UHS 0 0 lo0
10.10.10.6 link#10 UH 0 2 ovpns2
110.x.x.x link#7 UH 0 151087 pppoe0
110.x.x.x link#7 UHS 0 0 lo0
127.0.0.1 link#3 UH 0 303 lo0
192.168.20.0/24 10.10.10.6 UGS 0 0 ovpns2
203.x.x.x 110.x.x.x UGHS 0 51 pppoe0
203.x.x.x 110.x.x.x UGHS 0 51 pppoe0Routing tables (Site B)
Internet:
Destination Gateway Flags Refs Use Netif Expire
default 110.x.x.x UGS 0 1133358 pppoe0
10.0.0.0/24 10.10.10.5 UGS 0 14 ovpnc1
10.0.2.0/24 10.10.10.5 UGS 0 4 ovpnc1
10.10.10.5 link#8 UH 0 0 ovpnc1
10.10.10.6 link#8 UHS 0 0 lo0
110.x.x.x link#7 UH 0 734608 pppoe0
110.x.x.x link#7 UHS 0 0 lo0
127.0.0.1 link#3 UH 0 307 lo0
192.168.20.0/24 link#2 U 0 3028907 re1
192.168.20.254 link#2 UHS 0 0 lo0
203.x.x.x 110.x.x.x UGHS 0 16314 pppoe0
203.x.x.x 110.x.x.x UGHS 0 16269 pppoe0Routing tables (Site C)
Internet:
Destination Gateway Flags Refs Use Netif Expire
default 110.x.x.x UGS 0 56145 pppoe0
10.0.0.0/24 10.10.10.1 UGS 0 2 ovpnc1
10.0.2.0/24 link#2 U 0 28391 re1
10.0.2.253 link#2 UHS 0 6 lo0
10.10.10.1 link#8 UH 0 0 ovpnc1
10.10.10.2 link#8 UHS 0 0 lo0
110.x.x.x link#7 UH 0 61442 pppoe0
110.x.x.x link#7 UHS 0 0 lo0
127.0.0.1 link#3 UH 0 277 lo0
192.168.20.0/24 10.10.10.1 UGS 0 0 ovpnc1
203.x.x.x 110.x.x.x UGHS 0 43 pppoe0
203.x.x.x 110.x.x.x UGHS 0 43 pppoe0So from A i can ping 192.168.20.254 and 10.0.2.253. From B and C I can ping 10.0.0.253. From B or C canot ping 10.0.0.253.
I don't think it's a firewall issue as I've added an allow all all on every interface on all three routers while testing.
To me the routing looks ok but I'm no expert. Any suggestions?
Thanks