Answer the question
In order to leave comments, you need to log in
M
M
Maxim Legenchenko2018-10-31 09:17:33
Maxim Legenchenko, 2018-10-31 09:17:33
PFSense and StrongSwan how to connect two LAN networks?
There is a VPS with Ubuntu and StrongSwan installed. It has one network interface eth0 with a white IP xxx.xxx.xxx.xxx and a local network interface lo 127.0.0.1
There is an office with PFSense installed with a white IP yyy.yyy.yyy.yyy and an internal
network there are few guides on how to raise an ikev2 tunnel between them. But even for those that I found, there is no traffic. PFSENSE shows that the connection is established, but there is no traffic, and StrongSwan shows Estabilished and the established tunnel 127.0.0.1/32 == 192.168.0.0/24 but there is no traffic and no ping.
In IPTable on Ubuntu, I wrote the rule to allow everything and everywhere. The encryption algorithms are the same on both PF and StrongSwan.
In What can be a snag, some rules in iptable or route may be missing. Or it is impossible to establish a tunnel on the local interface? In general, it is planned to connect PS to StrongSwan and then connect another office with Mikrotikom to StrongSwan so that the networks behind PSSense and behind Mikrotik can see each other.
1 answer(s)
@MaksytL
M
Maxim Grishin, 2018-11-01 @MaksytL
You raised intersite VPN instead of a dialup VPN. You need to set up, say, an L2TP server on this VPS in order to register a virtual local area network on it, then allow IP forward on it and configure the Internet access route on your side through a VPN connection.
As for additional plans - in principle, the same thing, but it will still be necessary to raise the dynamic routing protocol - each gate must tell the server which networks are behind it, and the server will then forward packets between these networks to the appropriate tunnel interface.
Similar questions
I
M
@
T
G
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question