Good morning,
I would appreciate some help to find a soution to reach a remote BO network throught a remote connection to HO Firewall. Here's some details of the setup:
HO XGS107w with 192.168.3.0/24 network and BO XGS87w with 192.168.2.0/24 network with an SSL site to site VPN already configured.
An additional remote SSLVPN ( subnet 10.81.234.0/24) has been configured to HO.
The question is the following:
I need to reach BO 192.168.2.0/24 network throught the remote VPN established on HO FW.
I've added VPN subnet to "Local networks" in the VPN server configuration.
Rule HO: Accept any service going to VPN zone to remote network BO, when in LAN or VPN zones, and coming from from any network.
Rule FO: Accept any service goint to LAN BO when in VPN zone and coming from LAN HO and REMOTE VPN SUBNET (10.81.234.0/24)
I'm currently able to ping 192.168.2.0/24 BO network when remotly connected to HO, but I can't actually reach hosts throught browser.
It's possible to configure a setup like this or would be better make a second VPN remote connection to connect directly to the BO FW?
I hope I was clear enough.
Thank you in advance
Federico
Hello Vivek,
I've not mentioned that in the remote VPN config, "use as dafault gw" is flagged.
here's the VPN to VPN rule:
Here's trace from HO
and BO
Host 192.168.2.147 used for testin purpose is a Gigaset IP Dect and actually have an http web server
Sorry, I got confused. Network Remoto Alghero 2 (192.168.2.0/24) 
Hello, sorry for late reply.
In the meanwhile, I made a lot of tries and I found a funcional configuration.
The only problem is that has worked since last week, and now isnt' working anymore. I'm attaching you all the screen of configuration, logs and pcaps.t
HO_Master_FW Configuration
BO_Slave_FW Configuration
HO Pcap with error and
Logs with established conenctions highlited
Why it worked untill today? Any suggestion?
Thanks
Quote