OPNsense Forum

Archive => 20.7 Legacy Series => Topic started by: syamajala on December 21, 2020, 07:56:19 pm

Title: [SOLVED] ipsec unable to access lan
Post by: syamajala on December 21, 2020, 07:56:19 pm

I have setup a site-to-site ipsec tunnel and I can see the tunnel is connected in the status, but I am unable to access the lan on either end of the tunnel. I have a firewall rule from ipsec to lan. I can see on both ends a route is getting installed (192.168.101.0/24 on Site-B and 192.168.1.0/24 on Site-A). I'm not sure about the gateways, both list the default gateways for their networks in the route, I would have thought the gateway should be the remote ip of the tunnel? 

Title: Re: ipsec unable to access lan
Post by: syamajala on December 21, 2020, 08:35:28 pm

For some reason the ipsec to lan firewall rule was not working. Watching the traffic in live view, the ipec traffic was hitting the default deny rule. I added a rule from 192.168.1.0/24 to the lan and it works.