Hi, I have 3 sites, each with MikroTik router:
192.168.1.0/24 - main office, openVPN server 192.168.5.1
192.168.2.0/24 - branch1, openVPN client 192.168.5.2
192.168.88.0/24 - branch2, openVPN client 192.168.5.3
There will be 2 more branches soon.
According to my current configuration, I can ping from any device at main office to any device at any branch and vice versa. But branches can't ping each other. When I tried ping between Mikrotik routers with vpn client ip 192.168.5.2 and 192.168.5.3, it doesn't work. I guess I need to set up something with Firewall or maybe NAT at main office, but I don't know what. I'm aware that all communication between branches will pass through main office and it's bottleneck, but it's the only site with public static IP and I can't do anything about it. Any recommendations what to add to the firewall/nat rules please?