Hello,
i have an routing problem within my network.
Our Astaro has an IPsec-Tunnel to one of our customers still running. Out internal network can access all needed resources on the remote network. Our local subnet of the IPsec tunnel is an SNAT-IP, on wich our internal LAN is translated.
Now comes my problem:
I have to connect a 2nd Subnet, but i cant change my functioning SNAT. This 2nd subnet has a separate Firewall/Gateway Box. I gave this box an IP of our internal subnet. The 2nd Subnet is Hide-Nat-ed on this IP. Further i created a static route to our internal gateway of the astaro.
The 2nd subnet can now connect via TCP to the resources of the remote subnet of the VPN, but the clients did´nt receive the answers.
my questions:
Is my described scenario a regularly solution?
What i have to make, if i went wrong?
In which way can i connect a 2nd subnet to an existing IPsec tunnel, if i use SNAT?
Thanks for your support.
Clemens
This thread was automatically locked due to age.