Answer the question
In order to leave comments, you need to log in
K
K
kovalr2020-04-15 19:05:20
kovalr, 2020-04-15 19:05:20
Why is there no VPN connection between networks without NAT masquerade?
Hello, the question seems simple but I can't figure it out.
Here is an example network diagram
Router A client
Router B server
Router A receives ip address 192.168.1.10.
In the NAT chain, one masquerade rule per public interface to access the Internet.
In this configuration, router A pings router B. Computers behind router A cannot ping router B.
After adding a NAT masquerade rule to the VPN interface in router A, computers behind router A can already ping router B.
Why is it necessary to masquerade the VPN interface for access to network B ?
Why is routing not working? It seems private addresses should be routed?
3 answer(s)
@kovalr
A
akelsey, 2020-04-15 @kovalr
In such a situation, you need a site-to-site vpn.
Cars behind router B have no idea where to look for cars from 192.168.2.0/24.
PS
Accordingly, the addresses at the ends of the VPN tunnel are needed, for proper routing, not from the same subnets, i.e. not 192.168.1.0/24 and not 192.168.2.0/24.
Similar questions
1
A
C
X
A
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question