Hi there,
I have three routers linked together by IPsec site-to-site vpn.
I'm elaborating with 7.1.5 version of ROS, but I have the same problem at 6.49.2. EDIT: Information about 6.49.2 was not true, there was another mistake in configuration, sorry.
Router1 LAN IP 192.168.50.1/24
Router2 LAN IP 192.168.51.1/24
Router3 LAN IP 192.168.52.1/24
Router1 is having tunnel with Router2, policies, routes and firewall rules are created, link is ok, data flowing, no problem at all.
Router2 is having tunnel with Router3, the same as above, working like a charm.
Router2 is also having L2TP/IPsec for road warriors with local address 192.168.60.1 and remote pool 192.168.60.20-192.168.60.60
L2TP is working well, I can ping the 192.168.60.1 from client, also I can access anyting in Router2 local networks.
The problem is, I can't access any network that is on Router1 or Router3. All router are created, all policies are established, firewall rules that accepts forward traffic from 192.168.50.0/24 -> 192.168.60.0/24 and back and so on are created on all routers. These rule's counters are even getting incremented, but no data are flowing.
I tried to setup arp-proxy on WAN interface, I tried to setup some other rules with InterfaceList of l2tp connections as well as AddressList of that connections, but Im having no luck.
Can you point me some new thing to try?
Best Regards,
Jan