How to allow multiple site-ste vpn clients to access each other?



  • Hello everyone.

    I have a central pfsense install with IP: 192.168.2.1

    I have site-site vpn's setup between

    192.168.1.1 - 192.168.2.1
    192.168.3.1 - 192.168.2.1
    192.168.6.1 - 192.168.2.1

    Is there any way to allow clients from all of these subnets to access each other considering they all connect to 192.168.2.1? For example I want PC 192.168.1.20 to be able to access PC 192.168.3.19

    Thanks!


  • Rebel Alliance Developer Netgate

    That works fine just add routes to each of the client sites for all of the other networks.

    For example on 192.168.6.1, make sure it has a route for .1.x, .2.x, and .3.x.

    If you're on 2.1 it's as easy as entering them separated by a comma in the "IPv4 Remote Networks" box:
    192.168.1.0/24, 192.168.2.0/24, 192.168.3.0/24


Log in to reply