IPSec block internet
-
Hello all,
I would like to obtain your help to resolve a little problem.
I'have 2 rooms.
First room :
IP network 10.0.2.0/24
IP Gateway LAN : 10.0.2.50/24
IP WAN : 192.168.1.67/24Second room :
IP network : 192.168.31.0/24
IP gateway LAN : 192.168.31.254/24
IP WAN : 192.168.1.84/24WAN network : 192.168.1.0/24
Gateway : 192.168.1.254/24 (go to Internet...)I'have add an VPN beetween the first and the second room and an other beetween the second and the first room.
By room, I'have add the rules on firewall we explain :
First room with network 10.0.2.0/24
accept TCP on Src : 192.168.31.0/24 with destination : WAN Net and LAN Net.
Second room with network 192.168.31.0/24
accept TCP on Src : 10.0.2.0/24 with destination WAN Net and LAN Net.I have too add a rules to accept ICMP on the WAN by WAN network and by 192.168.31.0/24 network.
As I could not reach the internet, I have do in second room : tracert 192.168.1.84
the result is :
"impossible de joindre l'hôte de destination"For the VPN :
- phase 1 : Protocole AES 256 bits / transformation SHA256 / P1 DH Group = 4096 bits
- phase 2 : Protocole P2 : ESP / Transformation AES(128bits) AES256-GCM(auto)
Have you an explication ?
Thank you for your help.