I have two ASG 220s setup in my test environment:
ASG-1: Internal Interface 10.0.1.5 (10.0.1.0/24), External Interface 24.23.22.21
ASG-2: Internal Interface 10.1.1.5 (10.1.1.0/24), External Interface 66.55.44.33
There's a Site2Site VPN tunnel setup between the two Astaros; I can ping each ASG's internal interface from any host on the other side of the tunnel, no problem. However, I can't seem to route packets to any hosts behind each of the Astaros from either network.
For example, if I'm on a machine (10.0.1.100) behind ASG-1, I can't route any packets to a 10.1.1.0/24 machine such as 10.1.1.200. I've tried adding static gateway routes in either ASG, but when tracerouting, it appears to be sending it out to the default gateway, not the tunnel interface.
Any ideas? The routing table looks ok to me (it's routing 10.1.1.0/24 to dev/ipsec0). Subnet issue? Bit of a networking noob; any help appreciated.
Thanks
This thread was automatically locked due to age.