Site to Site OpenVPN cannot communicate 100%



  • I've got a site A (client site) to site B (home office) VPN setup with advanced config command " redirect-gateway def1;  " in the A client, and a outgoing manual route setup such as:
    "CABLE 192.168.89.0/24 * * * CABLE address * NO Tunnel to other office"

    in the site B pfsense

    Both units are PFSense.

    Now it seems that this is forwarding all traffic from A to B, and even registers the public IP at site A as the public IP of site B.

    However there are some virtual servers that I cannot seem to figure out why they will not respond to pings. I also cannot join the domain on that subnet. The firewall is also off on these devices.

    Site A subnet: 192.168.89.0/24
    Site B subnet: 192.168.90.0/24

    The firewall is off on all servers at the moment to troubleshoot this and still not working how we need it.

    Is there a way I can direct domain traffic between these hosts without directing ALL traffic? I just want these computers to be able to use certain network apps over a csv file share and join the domain.

    Thanks.



  • Also when I do a tracert from site A (89.*) this is the result:

    C:\Users\nca45>tracert 192.168.90.1

    Tracing route to VS1 [192.168.90.1]
    over a maximum of 30 hops:

    1    <1 ms    <1 ms    <1 ms  192.168.89.254
      2  200 ms    28 ms    29 ms  10.0.8.1
      3    20 ms    37 ms    38 ms  VS1 [192.168.90.1]

    Trace complete.

    C:\Users\nca45>tracert 192.168.90.3

    Tracing route to 192.168.90.3 over a maximum of 30 hops

    1    <1 ms    <1 ms    <1 ms  192.168.89.254
      2    <1 ms    <1 ms    <1 ms  xxx.optonline.net [108.170.xx.xx
    ]
      3    *        *        *    Request timed out.
      4  ^C
    C:\Users\nca45>tracert 192.168.90.10

    Tracing route to DATA [192.168.90.10]
    over a maximum of 30 hops:

    1    <1 ms    <1 ms    <1 ms  192.168.89.254
      2    22 ms    38 ms    43 ms  10.0.8.1
      3    21 ms    20 ms    23 ms  DATA [192.168.90.10]

    Trace complete.

    I can ping my physical nodes perfectly. (1 and 10)  I ping my virtual node (3) and I get nothing.

    Any ideas?