Accessing endpoint of site2site through VPN client


  • I have a site2site OVPN working between 2 locations. I have a clients connecting to location 1 with OVPN connections with no issues. However I have one client that connects to site 1 with OVPN that also needs to see resources at site 2 through the site2site but cannot ping those resources. Not sure what I have setup wrong

  • Netgate Administrator

    Is the site-to-site IPSec?

    If so you will need to have a P2 policy that carries traffic from the OpenVPN tunnel subnet. And a firewall rule to pass that at site 2.

    Steve


  • No, the site-to-site is OpenVPN

  • Netgate Administrator

    Then make sire rules in place at site 2 allowing the traffic from the tunnel subnet the client is in.

    If the client is not redirecting all traffic over the VPN then they will need to be passed a route to the site 2 subnet via the VPN. Add it as a local network in the remote access server at site 1.

    Steve