PPTP VPN - how to setup routing on pfSense for LAN-LAN connections in 2.0.1?
-
I have an office network and a shop network. Office has a pfSense as a gateway. Shop has a simple router, that can establish VPN connection.
I setup PPTP server ok, I can connect to office VPN and I can see office network from the shop. But not vice versa. I cannot ping office network from the shop.
Firewall has now everything enabled. I don't understand how do I setup routing in 2.0.1 so that my office could reach machines from shop network.
Going to the System->Routing requires me to setup a gateway and an interface for a routing rule. What ones should I create?
-
PPTP is not meant for site-to-site connections. Getting back to the "client" LAN would require a route back to the PPTP client's IP, but there is no way to achieve such a route in pfSense.
It probably works the other direction because the other router is doing NAT on the traffic so it all appears to come from the PPTP client IP.
IPsec and OpenVPN should be used for site-to-site VPNs, many "simple" routers can use OpenVPN with the right Tomato/*WRT image.
