4. OpenVPN site-site tunnel with pfsense and ASUS RT-AC66U-asuswrt-merlin as client

OpenVPN site-site tunnel with pfsense and ASUS RT-AC66U-asuswrt-merlin as client

  • T

    Don't know where to start. Have been messing with this for over a week…

    I'll start with what is working...

    It all started when i had an IP Phone (H.323) i wanted to use at my office1 (pfsense). The phone is connected via a IPSEC tunnel to office2 (pfsense) where the "PBX" is located. The phone registers fine and i can use it without a problem.

    I then wanted to use the phone at home1 also... I have a pfsense at home to.  I created a OpenVPN tunnel to office1 (to use other stuff at office1 also, not only the phone). I then entered the ip of the home network in the ipsec tunnel also... I got the phone to work at home without a problem really..

    When i use the phone at home it goes this way to the PBX:  phone -> Home1 ->OpenVPN tunnel -> Office1 -> IPsec tunnel -> Office2 -> PBX.

    Now the problem starts. My collegue wanted to do the same thing (Home2), use his phone from Office1 at home also.. He bought a ASUS RT-AC66U and wanted me to set it up so he could use his phone at home. It turned out the firmware in ASUS router did not really work with site-site tunnels.. I tried a OpenVPN RemoteAccess (SSL/TLS) connection instead but ended up with bearer channel issues on his phone.. The phone registered ok but i could not make calls with it.. I installed AsusWRT-Merlin on the router instead. Configured the site-site tunnel.. But for some reason i could not route the traffic from Office1->Office2 and back.. I instead created a OpenVPN site-site tunnel from Home2 to Office2 directly.. I could ping the PBX and also register the phone but i have the same bearer channel issues not beeing able to make a call...

    It feels im stuck now... I'm unsure about the settings in the webui of the ASUS router (Home2) together with Pfsense in the other end (Office2)...

    I guess the "Create NAT on tunnel" creating the issues? See screenshot.. But if i select No instead of Yes.. It says "routes must be configured manually" .. What routes? The routes to the Office2 is added in the "custom configuration" box... (route 10.51.0.0) ... Well... Does anyone have any inputs here? :(

    I didnt want to make the first post too long...

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy