Add Subnet Ipsec To OpenVpn
-
Good morning
A question
I have a Pfsense with Ipsec connection to a Zywall. They have seen each other.
I set an OpenvPN on this Pfsense, the client saw the pfsense but not the zywall and its resources behind the ipsec.
I entered the route in the Pfsense server options but it works.
Where am I wrong? -
@danielino1981 said in Add Subnet Ipsec To OpenVpn:
I set an OpenvPN on this Pfsense
A remote access server, I guess.
So if you don't push redirect gateway, you have to add the network behind the Zywall to the "Local Networks" in the OpenVPN server settings to push the route to the clients.Additionally you have to add a second phase 2 for the OpenVPN tunnel network and the remote network to your IPSec configuration.
-
Thanks for your answer. All this done but it doesn't work
Open Vpn Server
Ip Sec
-
The "push route" in Custom options and the Local Networks do the same thing. It's recommended to use Local Networks for pushing routes to the clients. So you should remove the push route from custom options.
Did you add the second phase 2 on the Zywall as well?
-
If both VPNs are up & working between pfSense and the remote sites, then it's a routing and/or firewall issue. That VPNs are involved is irrelevant, as they're just IP connections.
-
On the Zyxel side do I have to add routes?
