Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Phase 2 - IPsec

    Scheduled Pinned Locked Moved
    IPsec
    2
    2
    68
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      Spyderturbo007
      last edited by

      I'm hoping someone can help me with a VPN issue. I have 3 x 6100's. There is 1 main location and 2 secondary locations. I'm trying to allow the two secondary locations to access each other, but I'm lost.

      I was told that I need to configure Phase 2, but I'm not sure how?

      Main - 172.16.1.0/24 (Connects to both secondary locations)
      Secondary 1 - 192.168.50.0/24 (Connects to Main)
      Secondary 2 - 172.16.0.0/24 (Connects to Main)

      Can someone help me with things like Mode, Local / Remote Network, etc?

      Thank you!

      M 1 Reply Last reply Reply Quote 0
      • M
        mcury @Spyderturbo007
        last edited by

        @Spyderturbo007

        Assuming it is a hub and spoke topology:

        main site:
        first phase 2:
        172.16.1.0/24 -> 192.168.50.0/24
        172.16.0.0/24 -> 192.168.50.0/24

        second phase 2:
        172.16.1.0/24 ->172.16.0.0/24
        192.168.50.0/24 -> 172.16.0.0/24

        site 192.168.50.0/24
        192.168.50.0/24 -> 172.16.1.0/24
        192.168.50.0/24 -> 172.16.0.0/24

        site 172.16.0.0/24
        172.16.0.0/24 -> 172.16.1.0/24
        172.16.0.0 -> 192.168.50.0/24

        dead on arrival, nowhere to be found.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post