OPNsense Forum

English Forums => General Discussion => Topic started by: Hill003 on April 06, 2019, 02:21:28 am

Title: LAN THROUGH IPSEC VPN
Post by: Hill003 on April 06, 2019, 02:21:28 am: Hi,

I have two OPNSENSEs, and they are directly connected, FW2 is connected to the Internet. I expected that LAN on FW1 could access the Internet through a IPSEC link between FW1 and FW2. Here's what I've done:

1. establish the IPSEC between FW1 and FW2;
2. raise a default route 0.0.0.0/0 from FW2 to FW1 in IPSEC;
3. add LAN from FW1 to the NAT rules on FW2;

And it worked fine. I could use the PC under FW1 to access the internet without any problem!

But here's the problem, when I can't to access the FW1 using PC under FW1. When I packet captured on FW2， I found all the pkgs from PC to FW1 are routed to FW2! Could anyone help me to get this work? Any hints would be greate, many thanks!

PC:192.168.0.10/24
FW1 LAN:192.168.0.1/24
FW1 WAN:192.168.40.10/24
FW2 LAN:192.168.40.1/24
FW2 WAN:10.1.2.3/22

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy