Community discussions

MikroTik App
 
marwooj
newbie
Topic Author
Posts: 35
Joined: Mon Nov 06, 2017 10:44 am

Routing IPsec HUB with two S2S remote offices

Fri Mar 16, 2018 6:15 pm

Hi, I have 2 mikrotiks routers connecting with Cloud HUB that provide VM for us. Both mikrotiks use IPsec S2S to HUB. All stations on both sites can reach VM in HUB.
SiteA 192.168.2.0/24 s2s --> HUB 192.168.1.1/24 <-- s2s 192.168.3.0/24 SiteB
How can I add routes to mikrotiks so sites can access each other through HUB?

Adding

mikrotik 1 SiteA /ip route add dst-address=192.168.3.0/24 gateway=192.168.1.1

mikrotik 2 SiteB /ip route add dst-address=192.168.2.0/24 gateway=192.168.1.1


Did not work very well. Like there is no IPsec remote sites in routing table?
 
User avatar
CZFan
Forum Guru
Forum Guru
Posts: 1724
Joined: Sun Oct 09, 2016 8:25 pm
Location: South Africa, Randburg
Contact:

Re: Routing IPsec HUB with two S2S remote offices

Fri Mar 16, 2018 6:20 pm

Why don't you just create an additional IPSec S2S directly between the sites?
MTCNA, MTCTCE, MTCRE & MTCINE
 
Sob
Forum Guru
Forum Guru
Posts: 5684
Joined: Mon Apr 20, 2009 9:11 pm

Re: Routing IPsec HUB with two S2S remote offices

Fri Mar 16, 2018 6:26 pm

You don't add route, you add new policy. Now e.g. SiteA has policy for 192.168.2.0/24 <-> 192.168.1.0/24, so you will need to add a new one for 192.168.2.0/24 <-> 192.168.3.0/24 (similarly for SiteB and also HUB needs to add matching policy for each peer). It will make packets for 192.168.3.0/24 go to HUB and it will then take care of routing them to SiteB.
People who quote full posts should be spanked with ethernet cable. Some exceptions for multi-topic threads may apply. Not intended as incentive for masochists.
 
marwooj
newbie
Topic Author
Posts: 35
Joined: Mon Nov 06, 2017 10:44 am

Re: Routing IPsec HUB with two S2S remote offices

Sat Mar 17, 2018 9:08 am

HUB needs to add matching policy for each peer
No access to HUB admins, so I will just create direct As2sB.

Who is online

Users browsing this forum: fposavec, maxsaf, pieterp, RLeemans, sindy, vikinggeek, Xtremer, Znevna and 163 guests