Posted March 6, 201410 yr I have a CentOS 6 box acting as a firewall, gateway and router. Behind my gateway is a VPN concentrator with an IPSEC tunnel to a branch office. My servers sit on 172.16.0.0/24, desktops sit on 172.16.1.0/24. The VPN concentrator sits on 172.16.0.4 and has an ipsec tunnel to a branch office with 192.168.1.0/24. I am able to ping any address on the 192.168.1.0/24 network from the firewall which is multihomed at 172.16.0.1 and 172.16.1.1. However, if I try to ping 192.168.X.X from my desktop PC (172.16.1.16), I get TTL expired errors. I'm sure I need a policy route somewhere. I just need some ideas. Thanks! Continue reading...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.