I finally have setup a OpenVPN Net-to-Net named [N2N-TEST] with 2 ipfire boxes:
- Site A-Green:192.168.64.0/24 / Masquerading: ORANGE & GREEN => OFF
- Site B-Green: 192.168.10.0/24 / Masquerading: GREEN => OFF
I had to create the following firewall rule on Site-A so that the PC’s can connect to Site-B: GREEN-Network:
- Source → Firewall: All
- NAT: Source NAT → New source IP address: Green (192.168.64.1)
- Destination-> OpenVPN Net-to-Net: [N2N-TEST]
- Protocol: All.
This rule is then listed in the “Outgoing Firewall Access” in the Firewall Rules list…
So with this rule Site-A can access Site-B GREEN network.
My question is:
This rule works for me but I’m not sure if this is the correct way since I thought that it shouldn’t be necessary to create any rule for OpenVPN anyway.
Or is this rule only necessary if MASQUERADING for GREEN and ORANGE on Site-A are turned off ?
Any help is greatly appreciated!