Customer <-IPSEC-> Site1 <-IPSEC-> Site2

  • I think this might be a simple question for many of you, our setup is like this:

    Customer(Unknown FW) <- IPSEC -> Site1(PfSense) <- IPSEC -> Site2(PfSense)




    Site1-Lan can reach Customer-Lan and Site1-Lan can reach Site2-Lan but Customer-Lan cant reach Site2-Lan.

    What settings to I need? At the moment only the IPSEC's are configured. Also phase2 Entries are set up At Customer site and Site1, Site2.

    Thanks for any help :)

  • You'll need to configure a route to pass the customer to site 2 and also the reverse.

Log in to reply