i am using two instance one on port 1194 and one on 1196 1194 is preshared for dd-wrt working fine.tunnel subnet is 10.3.3.0/24.
1196 is remote acess for road warriers.tunnel subnet is 10.4.4.0/24 i want both my VPN segments to use my headoffice LAN and can also connect to each other as hub and spoke. both VPN properly setup and working fine. i can acess pfsense LAN segment from remote site and from road worrier both. however when i try to access 10.3.3.0/24 from 10.4.4.0/24 clients it does not reach i know you might be saying it is a routing issue. however further analysis says something else. my dd-wrt can reach 10.4.4.1 (pfsence interface) after i define the static route in dd-wrt router. but my dd-wrt router can not reach 10.4.4.10( which is an ip of my road warrier windows laptop) and at the same time my lapton can reach 10.4.4.1 and LAN segment also. but can not reach 10.3.3.1(which is pfsence interface). i set a route for 10.3.3.0/24 with gateway of 10.4.4.1 in windows laptop but still i can not reach the 10.3.3.1 i check all openvpn rules are configured properly via wizard. now i have no clue which way should i track. however i can see one error in log which i dont know whether it is related to the issue or not. openvpn[29631]: xxxx/182.xx.xx1.202:62706 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #1869 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings
_______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
