Traffic from Firewall trough IPSEC Tunnel fails

Rolfieo

I have a question/problem...

I have 3 locations with pfsense firewalls. Location A, B, C
There is a IPSEC tunnel between AB and BC and AC.

At the moment my Windows servers are located at Location A.
We have a new Location B.
IPSEC tunnel is up and users located at B can work and connect to all resources to Location A.

I'm now trying to make configure an Authentication Servers on Firewall B, but with an LDAP server located on location A.
But this always fails to connect.

If i try to ping from the Firewall B CLI to Firewall A. Request timeout.
But if i ping from firewall B with ping -S 172.17.0.1 192.168.178.15 it will work.
If an host pings, it also works. Looks like the issue is only with traffic that is generated from the firewall it self.

My Guess is that the WAN IP is used. But i can't explain it.

But I can't figure out why this goes wrong.

Anyone has some idea?

Derelict

https://docs.netgate.com/pfsense/en/latest/vpn/ipsec/accessing-firewall-services-over-ipsec-vpns.html

bbrendon

Also, you might be better off using VTI.