Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 10 replies
  • Subscribers 1 subscriber
  • Views 12947 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN Site-to-Site IPSec ok but no ping

whaege
Hello,
I have connected 2 ASG via Site-to-site IPsec, the connection is fine.
The Home network is 10.10.0.0 /16 and the remote network 192.168.0.0 /16.
If I now traceroute from remote (192.168.217.1) to 10.10.2.78 I come to the internal address of the Home Astaro (10.10.2.6) but than it stopps.
Ping also is not working, if I create a DNAT ( Traffic Source: Remote network, Traffic Service: ping,Traffic Destination:Home network, Destination: internal address, Service: ping) it works.
I like to allow Service:any, but this is not allowed in NAT.
How can I route all service from remote network into home network
Thank you for your help!
Wolfgang


This thread was automatically locked due to age.
Parents
  • 0
    Whaege, as Whity said, if your site-to-site settings are correct, you don't need any NAT rules, nor do you need any additional routes.  Please show pictures of the 'Site-to-site VPN tunnel status' on both Astaros (Click on 'Site-to-Site VPN').  Depending on what those show, we may need to look at pictures of the IPsec Connection' and 'Remote Gateway' from both Astaros.

    Cheers  - Bob
  • 0 in reply to BAlfson
    BAlfson, here are the two configs. Because there are public IPs, I greyed them, but they are the same vice versa
Reply Children
No Data