Openvpn Layer3 bridge
-
i am testing a particular solution and i don't know how to fix it.
I have 2 offices, which I will call headquarters A and headquarters B.
Site A is connected in MPLS VPN with an external provider, I entered the pfsense network which is in the network with the wan interface, on this pfsense set the OpenVpn layer 3 server.
Site B is connected via OpenVpn layer 3.
The networks can be seen and function correctly, my problem is that the two offices must have two different IP classes but I should see the IPs of office B from office A in full.
in practice, when I invoke a service from site A from site B, the IP that invokes the services is that of Pfsense.
I tried to configure a layer2 tunnel but it doesn't allow me to manage two different network seeds. How can I handle the situation? -
There's no such thing as a layer 3 bridge. Bridges are a layer 2 function. With OpenVPN, the normal method is TUN mode, which you route IP through. If you want a bridge, you have to use TAP mode.
-
@sconvolt666 said in Openvpn Layer3 bridge:
when I invoke a service from site A from site B, the IP that invokes the services is that of Pfsense.
Huh? then you didn't setup a site to site vpn... But you have setup a road warrior?
With a site to site vpn, you would see the IP of the client.. There would be no natting going on.
192.168.1/24 - pfsA -- vpn -- pfsB - 192.168.2/24
When 192.168.1.x talks to 192.168.2.y, Y would see 192.168.1.x talking to it. And vise versa..
https://docs.netgate.com/pfsense/en/latest/recipes/openvpn-s2s-psk.html
https://docs.netgate.com/pfsense/en/latest/recipes/openvpn-s2s-tls.html
