PFSence VPN Routing

Posted by SvrGuy on Server Fault See other posts from Server Fault or by SvrGuy
Published on 2010-12-21T19:53:05Z Indexed on 2010/12/21 19:55 UTC
Read the original article Hit count: 211

Filed under:
|
|

We use PFSense firewalls at three installations with the following LAN networks:

1.) Datacenter #1: 10.0.0.0/16 2.) Datacenter #2: 10.1.0.0/16 3.) HQ: 10.2.0.0/16

All of these locations are linked via an IPSEC tunnel that works properly. Hosts in any of the above networks can communicate with hosts in any other of the above networks.

Now, for our laptops etc. we established a road warrior network 10.3.0.0/16 and have implemented OpenVPN to link the laptops etc. to Datacenter #1. This works great too, so our laptops can connect and communicate with any host in Datacenter #1 (anything on 10.0.0.0/16)

The problem is the laptops can't communicate with any hosts that Datacenter #1 can reach by its IPSEC tunnel to Datacenter #2 (and/or the HQ for that matter).

Does anyone know what to do configuration wise on the PFSense box in Datacenter #1 to configure to route packets received on the OpenVPN tunnel to Datacenter #2 over the IPSEC tunnel? It could be a setting on the OpenVPN or some sort of static route or some such.

Any ideas?

© Server Fault or respective owner

Related posts about vpn

Related posts about routing