Contact Radius Server on remote site
I have the following scenario:
Firewall on Site 1 in Subnet 172.21.0.0/22
Radius Server on Site 2 with IP 172.16.1.1/22
Site 1 and 2 are connected via ipsec (phase 2 local/remote networks are 172.16.0.0/16 and 172.21.0.0/16)
The problem is, that the firewall is trying to contact the radius server via the default gateway which is the wan interface. Is there any way to "teach" the site 1 firewall that it should use the LAN interface when contacting the radius server?
My workaround is the following configuration on site 1 firewall:
1. Add a new gateway on LAN interface
2. Add a new static route for radius server 172.16.1.1/32 and use the newly added gateway on LAN interface
Is this the only way to solve that problem?