openvpn client unable to see remote lan at end of WG site to site

[buecker]

I have a working wireguard site to site setup. I have a working openvpn setup at site a. However, I can't get the openvpn client that is connected to site A to see Site B.

I have put in the wierguard and site b's addresses into ipv4 remote in openvpn. However, I can't even see anything bounce of the firewall. If the data isn't making it to the firewall then what does that mean?

[bartjsmit]

If the data isn't making it to the firewall then what does that mean?

Most likely that there is a detour on the route out or the route back. Check that each hop along the path has a route to the destination and then do the same for the return path

[FraLem]

I would recommend to check firewall rules on the Ovpn interface.

Hope this helps

[buecker]

Thanks for the help. It is working now.

I had 3 parts I needed to change.

• in the VPN server I had to add site b lan address range into "IPV4 Local Network" field. I had it in "IPV4 Remote Network" field.
• In the S2S wireguard I had to add my OpenVPN network 10.10.0.0/24 on both sides of wireguard PEER for allowed networks.
• I had to add an allow firewall rule for the network interface on site b.