| Routing all traffic from a remote network through host GW Hello
I have two branch offices connected together via VPN. The main branch office (A) has a simple NAT router as the gateway which also supports IPSEC VPN. The remote office (B) has the same type of NAT router which also supports IPSEC VPN.
Here's the network information:
Site A: 192.168.1.0/24 (gateway is 192.168.1.1)
Site B: 192.168.2.0/24 (gateway is 192.168.2.1)
The are connected via VPN and I can ping devices back and forth.
How can I make it so that all traffic on 192.168.2.0 network is routed through the VPN and thus uses 192.168.1.1 gateway as the point of incoming and outgoing traffic (gateway to the internet?) I do not want ANY TRAFFIC going through the ISP connected to the 192.168.2.1 router. I want the traffic to go through the VPN and then through the 192.168.1.1 router.
I think this has to do with static routing. If so how can I set up a static route somewhere on a router (either 192.168.2.1 or 192.168.1.1 router)?
Or if something else has to be done please advise.
Thank you,
Rizwan |
|
| It'd help to know what gear you have at each end and how it is configured before
making a suggestion, but off the top of my head, you'd probably do the static
route idea.
Regards |
|
| Hello,
Its m0n0wall on both ends.
Thanks! |
|
| reply to rizwan602
Never worked with monowall before, so I can't give exact configs. Presuming the following network setup
192.168.2.1 -- (site b) -- The Internet -- (site a) -- 192.168.1.1
And both 192.168.x.x networks knowing how to route to one another, you put a static route on 192.168.2.1
to point to 192.168.1.1, and to be sure it only uses the 192.168.1.1 to route, you could add a 2nd
route to null0 but with a lower metric / weight that if the connection with 192.168.1.1 were to break,
traffic would not go to the site b internet.
My 00000010bits.
Regards |
|
|
|
