I needed to link 2 networks. Mostly because of NAS which is located in one site (Both RB962). The tunnel seems to work fine, I by-passed NAT for local networks, so it looks like this :
And got couple of noobie questions :
1/ Can I leave only IpSec removing tunnel at all?
2/ How can I check if current GRE tunnel is encypted on IpSec?
3/ My nightmare :
Have no idea why, but on 10.0.1.250/24 I have 4 access points with static IP. I am not able to reach those 4 access points from 192.168.0.1/24. I'm not able to assign them DHCP (they require static IP in Access Point mode), but it's also curious, as I have my computer running on also static IP 10.0.1.252 which I can easily reach from 192.168.0.1/24. All hosts from 192.168.0.1/24 are visible under 10.0.1.250/24
That's too much for me, I was removing tunnels, trying with firewall, etc, but no chances to reach those 4 access points (10.0.1.251, 10.0.1.249, 10.0.1.248, 10.0.1.247) from 192.168.0.1/24