Hi Everyone,
I'm a little lost on the site-to-site vpn setup. I've set it up on V7 without too many troubles,
and even replicate the configuration on V8 i run into some issues...
The issue is that traffic between the two remote sites is blocked. I can see the packet filter rule blocking it. The only way to allow traffic and comunicate is to set a Packet filter rule on both sites as :
Source: any
Destination: any
Service: any
Here my setup:
- Set-up site-to-site VPN and connects succesfully
- Checked "Automatic Firewall Rules"
with this settings, traffic is blocked
I tried to add additional rules:
- LAN1 -> LAN2 : Service: Any -> Allow ->Interface: ANY
- LAN2 -> LAN1: Service Any -> Allow ->Interface: ANY
Still didn't work.
In addition our ISP sent us a complain (but i'm not sure is legitimate) that they catched
DoS out of our IP. Since the remote site has no clients (just servers that were fresh installed) i suspect that traffic is sent over WAN.
What i cannot understand, is why with packet filter of ANY->ANY->ANY the two sites can talk to each other, but (if the ISP is correct) part of the traffic is sent over the WAN link as well..
Thank you in advance
Neko
This thread was automatically locked due to age.