[SOLVED] ipsec unable to access lan

Started by syamajala, December 21, 2020, 07:56:19 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
December 21, 2020, 07:56:19 PM Last Edit: December 21, 2020, 08:35:43 PM by syamajala
I have setup a site-to-site ipsec tunnel and I can see the tunnel is connected in the status, but I am unable to access the lan on either end of the tunnel. I have a firewall rule from ipsec to lan. I can see on both ends a route is getting installed (192.168.101.0/24 on Site-B and 192.168.1.0/24 on Site-A). I'm not sure about the gateways, both list the default gateways for their networks in the route, I would have thought the gateway should be the remote ip of the tunnel? 
December 21, 2020, 08:35:28 PM #1
For some reason the ipsec to lan firewall rule was not working. Watching the traffic in live view, the ipec traffic was hitting the default deny rule. I added a rule from 192.168.1.0/24 to the lan and it works. 
Print
Go Up Pages1
User actions