1
19.1 Legacy Series / Getting opnSense to route over IPSec tunnel
« on: July 19, 2019, 03:23:10 am »
Hi All,
Hopefully an easy one, I've got an IPSec tunnel connecting two sites, that side of things is working, but there's one niggle.
There's an internal domain setup at each site, and for queries to site A's internal domain I want to direct unbound on opnSense at Site B to query site A's DNS and vice-versa, the overrides are set up and working but there's an issue.
The issue is that although all the hosts on the LAN net can see all the hosts on the remote net (and vice versa) the gateway itself tries to route traffic bound to the other site via its default gateway rather than through the IPSec tunnel.
I've tried some tweaks around routing/gateways but nothing seems to convince it to route out over the IPSec tunnel for that network.
If anybody can give me some pointers I'd appreciate it.
Thanks,
-A
Hopefully an easy one, I've got an IPSec tunnel connecting two sites, that side of things is working, but there's one niggle.
There's an internal domain setup at each site, and for queries to site A's internal domain I want to direct unbound on opnSense at Site B to query site A's DNS and vice-versa, the overrides are set up and working but there's an issue.
The issue is that although all the hosts on the LAN net can see all the hosts on the remote net (and vice versa) the gateway itself tries to route traffic bound to the other site via its default gateway rather than through the IPSec tunnel.
I've tried some tweaks around routing/gateways but nothing seems to convince it to route out over the IPSec tunnel for that network.
If anybody can give me some pointers I'd appreciate it.
Thanks,
-A