Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenVPN to IPSec

    Scheduled Pinned Locked Moved OpenVPN
    4 Posts 3 Posters 968 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • U Offline
      unti
      last edited by

      Hi, sorry, if my question already exists, but i really didn´t find any solution.

      There is an IPSec-VPN between our office (192.168.123.0) and our production-server-environment (192.168.234.0). There is an OpenVPN-Service in our office for our home-workers, too, which will use range 10.1.1.0 for the clients. Is it somehow possible, after connecting to 192.168.123.0 via OpenVPN to access network 192.168.234.0, too? This worked with PPTP but we don´t use it any longer.
      Thx for answers

      Unti

      1 Reply Last reply Reply Quote 0
      • S Offline
        snow
        last edited by

        Hi,

        This should be very easy, I have a similar constellation.
        You only need another phase 2 entry on your IPsec tunnel (the site where your OpenVPN-Service is running) and another phase 2 entry on the other IPsec endpoint device (where your production-server-environment is running).
        If not configured, you also need another route in your OpenVPN server config (push "route 192.168.234.0 SUBNETMASK").

        Nothing more should be required.

        EDIT:

        Sorry, I forgot to mention you need to put the 10.1.1.0 network as local subnet in your new phase 2 entry.

        1 Reply Last reply Reply Quote 0
        • U Offline
          unti
          last edited by

          Hi,

          thx for your answer. Do i have to put 10.1.1.0 in both new phase2 entries? And should these 2 entries look identically?

          1 Reply Last reply Reply Quote 0
          • Y Offline
            yaboc
            last edited by

            did you get tgis to work? im doing it slightly different. got A <ipsec>B <openvpn pki="">C and trying to access A from C. Added the P2 on A and B and pushed the routes on C and still can't get this to work. If you do let me know.
            Thanks</openvpn></ipsec>

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.