Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Reach Remote-Remote Network

    Scheduled Pinned Locked Moved
    IPsec
    2
    2
    1.7k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      kasper.tuempel
      last edited by

      Hi there!
      I have the following setup:

      Site B <–---> Site A <-----> Site C

      Site B 192.168.10.0/24
      Site A 192.168.1.0/24
      Site C 192.168.168.0/24
      Tunnels are up and working fine from B <-> A  and C <-> A
      I can easily reach host in net A from B and C.
      Now I want hosts in net B to be able to reach hosts in C. I tried adding a second phase2 entry (local LAN: LAN  Remote Network: 192.168.168.0) to pfsense @ B and (local LAN: LAN remote network: 192.168.10.0) on pfsense @ C.

      This doesn't work. Can anyone help?! Thanks!

      1 Reply Last reply Reply Quote 0
      • B
        bencummins
        last edited by

        Hi

        You need to set the "Local network" to the opposite remote network… ie on the A-C phase2  you set the local subnet to the B subnet and the remote one to the C subnet, and on the A-B one you set the local network to C subnet and the remote one to the B subnet.

        Hope that makes sense

        Ben

        1 Reply Last reply Reply Quote 0
        • First post
          Last post