Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Virtual private networks
»
Make LAN from other site to site VPN accesible to clients conn. to different VPN
« previous
next »
Print
Pages: [
1
]
Author
Topic: Make LAN from other site to site VPN accesible to clients conn. to different VPN (Read 1021 times)
Porfavor
Newbie
Posts: 26
Karma: 0
Make LAN from other site to site VPN accesible to clients conn. to different VPN
«
on:
November 27, 2022, 07:54:39 pm »
Hello,
I have setup two VPN servers on my opnsense (at a remote location). One is a peer-to-peer VPN where the remote network is my home LAN. This works well.
Moreover, I setup a second server for remote access. It is possible to connect to this server and reach the actual local LAN. Though, I cannot reach the home LAN through it. I entered this network into Local IPv4 network within the server settings.
What else do I have to do? Or isn't this possible?
Logged
bartjsmit
Hero Member
Posts: 2018
Karma: 194
Re: Make LAN from other site to site VPN accesible to clients conn. to different VPN
«
Reply #1 on:
November 27, 2022, 10:31:34 pm »
For each VPN you need to configure routing for all remote subnets to go via OPNsense. If your three networks are A, B and C then devices on each need to have a route to the other two. If the VPN is hosted on the default gateway for a network, then you only need to set up the routing there. If it isn't, you need to push out static routes to the clients; either through the VPN config file or through DHCP. or at a last resort by setting them on each device.
Remember that packets need to travel both ways; from the sender to the destination and replies back the same route. Each hop along each path needs to know how to reach both ends.
Bart...
Logged
Porfavor
Newbie
Posts: 26
Karma: 0
Re: Make LAN from other site to site VPN accesible to clients conn. to different VPN
«
Reply #2 on:
November 27, 2022, 11:04:10 pm »
Thank you for your reply.
The situation is as follows:
- Mobile Device (let's call this network C) connects to OPNsense on network B. Network B is connected to network A via different OpenVPN Server / Peer to Peer. I want to reach network A from network C.
- Network A has a router in between network B and network A's OPNsense.
- I have set a route on the router of network A regarding VPN-network of the access server as I did with the VPN-Network from network B of the site to site server.
- I haven't set any custom routes on network B's OPNsense.
- There does exist a route (on OPNsense network B) to networks A's LAN via the OPNsense on network A.
How can I achieve this? Set a route at System -> Routes -> Configuration? If so, I am not sure how to do this.
«
Last Edit: November 27, 2022, 11:08:44 pm by Porfavor
»
Logged
Porfavor
Newbie
Posts: 26
Karma: 0
Re: Make LAN from other site to site VPN accesible to clients conn. to different VPN
«
Reply #3 on:
November 28, 2022, 12:02:41 am »
Resolved:
Solution
https://forum.netgate.com/topic/83777/openvpn-multiple-site-to-multisites-routing/19
by jdp0418.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Virtual private networks
»
Make LAN from other site to site VPN accesible to clients conn. to different VPN