I have wg s2s configured using that wizard https://docs.opnsense.org/manual/how-tos/wireguard-s2s.html#step-3a-setup-wireguard-peer-on-opnsense-site-a (https://docs.opnsense.org/manual/how-tos/wireguard-s2s.html#step-3a-setup-wireguard-peer-on-opnsense-site-a). When I try to ping the remote LAN addresses from the router, everything works.
The problem is when I want to ping the addresses of the remote LAN network from some of the hosts in the local LAN network. Such a request will not come. Traceroute shows that it terminates at the local router.
When I set up snat, everything works, but I don't want to use snat for the s2s network, because I want the networks to see each other's source addresses.
My nat rules are set to Hybrid outbound NAT rule generation and I have no custom rules added.
Are there any other settings I should make so that s2s networks can communicate without nat?
Put the respective remote LAN in the AllowedIPs on each side.
this i already have that set up
So I solved it. The problem is that on one side I had IPsec turned on, which routed to the same LAN subnet.