Connections between 3 sites on tunnel



  • Hello

    I have 3 office,  2 child office and 1 central office , and 3 pfsenses, I successfully connected tunnels between 2 child offices to our central office both on wan of the central office

    child1 (195.168.0.1)  <<>>  central office (192.168.2.1)
    child2 (192.168.1.1)  <<>>  central office (192.168.2.1)

    connections between cenrtal office and child offices are ok but we cannot ping child1 to child2

    I tried to add new outbond nat for IPsec interface for any to any but it didn't work how I can route traffice between child1 and child2 from central office?

    Thank you
    Best Regards



  • Hi,

    Since I'm dealing with a similar problem I'm digging through the forum.

    AFAIK, your problem could be solved as cmb suggests in this post: https://forum.pfsense.org/index.php?topic=79057.0

    You need additional phase2 settings on both tunnels:

    
    Local            Remote
    192.168.0.1 <--> 192.168.2.1
                <--> 192.168.1.1
    
    

    and then

    
    Local            Remote
    192.168.1.1 <--> 192.168.2.1
                <--> 192.168.0.1
    
    

    Test the settings and take my advice with a grain of salt.

    Cheers,
    – Enrico