IPsec tunneling question
Hey all,
So I'm currently trying to setup our own VPN between branches in order to move away from the one provided by the ISP.
We managed to get 4 x ER7412-M2 and we were able to setup the IPsec tunnels between 3 out of the 4 (we didn't deploy the 4th one yet).
The thing that doesn't make sense to me is the following:
R1 : 192.168.252.1/24
R2: 192.168.151.1/24
R3: 192.168.152.1/24
R1 IPsec remote subnet: 192.168.151.1/24 and 192.168.152.1/24
R2 IPsec remote subnet: 192.168.252.1/24
R3 IPsec remote subnet: 192.168.151.1/24 and 192.168.252.1/24
So basically I have R1<>R2<>R3
Shouldn't I be able to access R1 subnet from R3 by using the R2 existing connection?
Also don't know if it's intended or not, on either device, in the routing table, I'm missing the entry for the remote subnet from the ipsec tunnel.
Thanks! If it helps I have a ticket opened with the TPlLink support team from my country and they said that they've escalated it to the appropriate team but radio silence since then.
SD-WAN is coming very soon,
I don't know exactly when it will come, but it is in beta version on controller 5.15.20.7 for now and we are just waiting for the router firmware to test it.
but it will probably solve your problem in a more elegant way. We don't know yet how it will work.
