01-26-2016 01:08 AM - edited 01-26-2016 02:53 AM
We have 3x Vyatta firewalls on different sites with IPsec VPN running.
On our main site we have 2x subnets.
192.168.0.x/24 for data with the interface being 192.168.0.2
192.168.1.x/24 for voice with interface being 192.168.1.2
From the voice subnet we can ping the voice interface, data interface and everything inside the data network.
From the data subnet we can ping everything in the data network, the data interface AND the voice interface but nothing within the voice subnet.
We can ping inside the voice subnet from the firewall but not for the data network.
Can you please advise on a solution to this problem.
01-26-2016 10:22 AM
I would take a look at the firewall rules and see if there is an order issue there. The IPsec tunnels are an internal process so consider that for the rules as well.