OPENVPN + IPSEC with IPSEC Gateway
-
Hi,
I have this scenario:
Home
Workstation 1:192.168.1.5
Network: 192.168.1.0/24OPENVPN
Network:192.168.2.0/24PFSense
Network (LAN): 192.168.3.0/24
Gateway (LAN): 192.168.3.254
Gateway (WAN): public IPRouter (Remote Network)
Gateway (WAN): public IPConnections between PFSense and Router work. So IPSec configuration is correct.
Connections between OPENVPN and PFsense Network (LAN) work. So OPENVPN configuration is correct.
But, when i try to do "ping" to a remote workstation in the Remote Network (Router with IPsec configurated) dont work.
What do i have to do? The problem is simple: my workstation in the OPENVPN doesnt see the remote network's public ip, and this is because the gateway is my home router, but how can i change this gateway to PFSense Gateway?
Thanks!!!
-
You need to make sure you do three things:
1. Push a route to the remote IPsec subnet to the OpenVPN clients.
2. Add phase 2 entries to both ends of the IPsec tunnel that cover the OpenVPN clients
3. Make sure your OpenVPN and IPsec rules allow traffic between those subnets