Inter VPN Routing

Hi All

So I have a small network with a cloud router at the core. I have some devices connected directly via copper and have started adding a few via external (WAN) VPN connections. I’m trying to keep things as simple as possible (because those are usually the best plans and also I’m not that smart ) so basically have a bridge config on the cloud router (actually a few bridges) where the copper links are linked to and the VPN connections get settled on. I remotely administer this router so have a VPN connection through which I connect which is not linked to any of the bridges (makes all sections visible with only the one connection). I can see/ping all devices on the various bridges/sectors and all has been good until I started adding the devices from outside (WAN VPNs). They connect fine and everything internally (on each bridge) can see/ping one another. When I connect via my VPN though I can only see/ping the locally connected devices (physical copper links) but none of the outside devices, why would this be? If I configure my VPN to settle on a bridge it seems to enable me to see/ping these external devices but this would not be ideal as then I’d need multiple connections to see the different sections.

Any ideas/solutions? … the simpler the better

Thanks,
R

Likely it’s your NAT rules. Give us a config from each side of the site to site VPN and maybe a quick drawing (picture of a whiteboard or notebook is fine).

A safe way to share the configs would be to run

/export hide-sensitive

Hi idlemind

Here are the firewall exports (I did make them a little more sensitive, they say even if you are paranoid, doesn’t mean they are not after you ) and a quick diagram.

Remote-config-sensative.rsc (1.42 KB)
Main-config-sensative.rsc (4.67 KB)