GRE Tunnel seems to be one way only.



  • i have set up a GRE from my Datacentre to my cloud site.

    Datacenter <cisco 2800> 192.168.0.0/24 -----[Tun1 172.16.0.2] -- [Tun2 172.16.0.1] --- 192.168.3.0/24 Cloudsite <Pfsense>

    Both the Datacentre and the Cloudsite are able to ping each other routers across the net OK.

    In fact i can get to the cloud server from the Datacenter over the GRE to ports 80 and RDP fine so in one direction it does seem to work so in theory packets are finding their way back, but i cannot do the reverse.
    I cannot ping anything outside each ends routers IE the 2800 and Pfsense.
    I do have an MX64 at the Datacenter side which i port forwarding necessary ports etc and has a static route to 192.168.3.0/24
    I have spend most to the day trying different things, adding and removing routes on the cloud side but am not get much further than i have.
    Any pointers appreciated.

    Paul


  • Rebel Alliance Developer Netgate

    If you can ping router to router, then it's almost certainly an issue with routing or firewall rules, either on the firewalls on either side, or on the devices behind the firewall(s).