1
Virtual private networks / Re: OPENVPN Routing in a Site2Site Network
« on: December 01, 2021, 02:07:03 pm »
Hello,
the first thing i noticed is, that the remote network from your cisco router is not a valid private IP address.
The second octet "178" indicates a public IP adress range. Nevertheless a connection should work.
Here some hints from my side:
1) Did you add the 192.178.9.0/29 network to the IPv4 Local Networks for the VPN?
2) Did you create an accepting firewall rule for the VPN-Clients to the remote 192.178.9.0/29 network?
3) Maybe the packets from VPN-Clients are sent, but you don´t get a reply from the remote side, because the source IP from your VPN is 10.0.8.0/24 and the remote side has no backroute set. Control via packet capture and create an outbound NAT rule for your VPN, if this is the problem.
4) Did you try to ping the remote side directly from OPNsense interface? Interfaces -> Diagnostics -> Ping
the first thing i noticed is, that the remote network from your cisco router is not a valid private IP address.
The second octet "178" indicates a public IP adress range. Nevertheless a connection should work.
Here some hints from my side:
1) Did you add the 192.178.9.0/29 network to the IPv4 Local Networks for the VPN?
2) Did you create an accepting firewall rule for the VPN-Clients to the remote 192.178.9.0/29 network?
3) Maybe the packets from VPN-Clients are sent, but you don´t get a reply from the remote side, because the source IP from your VPN is 10.0.8.0/24 and the remote side has no backroute set. Control via packet capture and create an outbound NAT rule for your VPN, if this is the problem.
4) Did you try to ping the remote side directly from OPNsense interface? Interfaces -> Diagnostics -> Ping