IPsec and Rooting with multi site



  • Hello,

    We have an issue with PFsense.
    We have 3 sites : 1, 2 and 3 (See attachment)

    2 talk to 3 through a PFsense IPsec site to site tunnel. It works fine.
    1 talk to 2 through annother PFsense IPsec site to site tunnel. It works fine.

    We try to make that 1 talks with 3 through 2.
    We tried to add route on each PFsense but it does not work.
    In fact, we are not sure to realy understand the site to site VPN concept.
    Does anyone can help us to find the good way to open the path ?

    Many thanks,



  • What do your phase2 entries look like per site? Do you have rule son the ipsec interfaces to allow such traffic?