NAT OpenVPN client-to-site trough IPSec site-to-site local subnet.

LogikWorm · June 26, 2024, 08:54:12 AM

Hello fellows members! First post here.

I've a quick question, I tought that I know the answer but it wasn't able to make it work, so I'm going back to this forum.

Actually, I have several users that are connecting to our OPNSense in order to be able to join our LAN.

The OpenVPN network is 10.10.10.0/24
The LAN is 192.168.1.0/24

I have a IPSec tunnel between two site, including our LAN, and on the other site (not OPNSense), the network 192.168.10.0/24

What I would like to do is being able to join the network 192.168.10.0/24 trough our OpenVPN client-to-site server. To do so, I tried a 1:1 NAT to use the IP 192.168.1.2 over the IPSec tunnel when coming from 10.10.10.0/24, but I was never able to make it work. I searched on the internet, but I was not able to find a case close to mine.

What would you do in this case ? What would be your recommandations or, did I miss something ?

Thanks in advance.

Monviech (Cedrik) · June 26, 2024, 09:26:36 AM

https://forum.opnsense.org/index.php?topic=41108

NAT OpenVPN client-to-site trough IPSec site-to-site local subnet.

LogikWorm

June 26, 2024, 08:54:12 AM

Monviech (Cedrik)

June 26, 2024, 09:26:36 AM #1