Multi-VPN routing issues



  • Hi all,

    I apologize if this has been asked before, however I'm having one hell of a time sorting out a routing issue with a new site, and I'm hoping for some direction.

    Our existing configuration was as follows:

    • pfSense Router at the head office, (192.168.1.0/24) hosting OpenVPN Site-to-Site (Shared Key) connections for each remote site.
    • Tomato Routers at remote offices, (192.168.x.0/24)  connecting as OpenVPN clients.  Each client had "route 192.168.0.0 255.255.0.0;" in their configuration.

    The above configuration allowed all sites to communicate with all other sites without issue.

    Now, I'm attempting to add a new pfSense router (172.16.1.0/24) as a client.  I can connect to the head office, and access resources there without issue, however I'm unable to contact any of the other remote sites.  I've set the same route setting in the new location's OpenVPN Client settings, in the Advanced section, however it doesn't appear to be making a difference.

    When running a Traceroute from the new location to any of the other sites, the communication gets as far as the tunnel network, then stops.



  • The packet is probably getting to the remote sites. But they will need to know how to answer/route back to 172.16.1.0/24 and there will need to be firewall rules in the appropriate places to pass 172.16.1.0/24