I don't know, if my solution is the Best one, therefore I ask here:
I have five locations with 6 networks as you can see in the picture.
The IPSec VPN is fully operational since some weeks.
What I needed was, that anyone can access the Network in the Central Network 192.168.120.0/24 (Black Policies)
But now I want to provide full access from Any Network to the Any other Network.
Due to reasons I need the Star-Topology, so a packet from one end to the other end have to pass the central Router.
As this Use-Case is very limited (less than 1% of the traffic) there are no performance issues.
But what is the right way to configure the IPSec Policies?
When I do it as I thought (Red Policies for route from OHS to LIN) it is working but it will result in many Policies.
Is this the right way, or how do i have to configure the policies?