Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSEC Tunnel spoke A accessing Spoke B through Hubsite

    Scheduled Pinned Locked Moved IPsec
    4 Posts 3 Posters 2.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      probie
      last edited by

      Some assistance is much appreciated.

      I am trying to set up a hub-spoke enviroment where my spoke A can access resources at Spoke C going through the hub site.  I want to avoid setting an ipsec tunnel be between the Spoke A and C.  Is this possible?

      |B 172.17.0.0/22(hub site)
                          |
            |–----------------------|
            A|                                  |C
            192.168.1.1/24                    10.10.10.1/24

      Thank you in advance.

      1 Reply Last reply Reply Quote 0
      • S
        spiritbreaker
        last edited by

        Hi,

        this is possible. U need a second Phase 2 to ur Spoke B Hubsite.

        Is there a IPSEC Tunnel beween Spoke B and Spoke C?

        cya

        Pfsense running at 11 Locations
        -mobile OPENVPN and IPSEC
        -multiwan failover
        -filtering proxy(squidguard) in bridgemode with ntop monitoring

        1 Reply Last reply Reply Quote 0
        • P
          probie
          last edited by

          Thanks spiritbreaker for the reply.

          I figured it out. The tricky part was on the phase2 hub configuration.

          BTW, I only have IPSEC tunnel between Spoke A to Hub (B) and Spoke C to Hub (B).  No IPSEC tunnel between Spoke A and Spoke C

          1 Reply Last reply Reply Quote 0
          • J
            JoelC
            last edited by

            Hi probie,

            Can you post the specific modifications you made to Phase 2?  My boss wants to do something similar and haven't worked much with IPSec VPNs (although my OpenVPN mesh is working quite well).

            Thanks,
            JoelC

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.