I have two distant places each with a public IP and I want to make the LAN network of these places as if they were one. That is, the machines in SiteA can communicate with the machines in SiteB and those in SiteB with those in SiteA.
In SiteA I have a Edgerouter12 with OpenVPN up and running. In SiteB I have a Asus Merlin A86U with OpenVPN up and running tho.
Network Overview
Main Config:
Router SiteA:
- IP 10.0.1.1
- LAN 10.0.1.0/24
- vtun1 localIP 10.255.0.1
- vtun1 remoteIP 10.255.0.2
Router SiteB:
- IP 10.1.1.1
- LAN 10.1.1.0/24
- vtun1 localIP 10.255.0.2
- vtun1 remoteIP 10.255.0.1
RouterB Config
The OpenVPN Tunnel is estabilished.
Problem1:
From SiteB I cannot route traffic through VPN Tunnel. I do SSH to RouterB and try ping and traceroute to SiteA and the router send traffic to SiteB WAN instead VPN Tunnel.
In VPN configuration on RouterB I put:
- Create NAT on tunnel - YES
- Inbound Firewall - ALLOW
- Force Internet traffic through tunnel - YES (I also try add "Policy Rules(Strict)")
Problem 2:
From SiteA I can only ping SiteB from RouterA. I cannot ping SiteB from any other device on NetworkA, the RouterA send traffic to WAN. I have static routes to vtun1 and Hairpin NAT checked.
Any suggestions?
Thanks!
