Diagram is on point and Yes it is a 3way VPN
It’s a 4.5 and 4.6 mix. Unnamed box is 4.5, VPN2 is 4.6 and VPN 3 is 4.5
Ignore the 10.3 subnet. That’s just some design flaw that will be removed from the configs
Right now 3 and 2 are peering fine with each other. I am trying to get unnamed box to peer with both 3 and 2 (unsuccessful so far)
Have you tried interconnecting just the gateways as IPSec peers, without the RFC1918 subnets? Establishing SAs and Flows between just the OpenBSD routers? If not, do that first.
Are you saying i should modify ipsec.conf for unnamed box and leave only
ike passive esp from 1.8.38.5 to 1.8.64.7
ike passive esp from 1.8.38.5 to 1.8.15.3
Dont want to mess with the other 2 now because they are fine and have been up for ages. I know the problem is from the unnamed box i am trying to add.
|