Hi Forum
I’ve setting up a system - and can not get the rules for accessing the different network
Headquarter: 192.168.201.0/24
BO1: 192.168.202.0/24
BO2: 192.168.203.0/24
Actually I’m getting the VPN up and running with the IPSEC - following this guide Ipsec Guide
And the VPN are created and talking to each other. I’ve added a route on each Router :
FLAGS DST_ADDRESS PREF_SRC GATEWAY DISTANCE
2 A S 192.168.200.0/21 192.168.201.1 WAN 1 1
Where the preffered source are changing on each router - depending on their local
The Firewall rules I’ve tried without any luck:
From Headquarter
FILTER
0 chain=forward action=accept src-address=192.168.201.0/24 dst-address=192.168.200.0/21 log=no log-prefix=""
1 chain=forward action=accept src-address=192.168.200.0/21 dst-address=192.168.201.0/24 log=no log-prefix=""
NAT
1 chain=srcnat action=accept src-address=192.168.200.0/21 dst-address=192.168.201.0/24 log=no log-prefix=""
Both enabled and disbled NAT rules - does not do any thing
As it is now - I cannot ping between the 2 Routers - neither has I access tp the LAN on the other side of the VPN.
So how should I create these rules for getting access LAN2LAN on this setup
I’ve tried with only Filter rules - and only NAT Rules - both with enabled and disabled different rules.
I reset the system several times - but ending up with the VPON tunnel created - But no access from Router1 to Router2 and visa verse.
So actually I think my problems would lie in the access rules for the setup - But then I’m not sure on howto do it coreectly Som I’m getting access LAN2LAN both ways