Subnet multisite VPN connected routing
I have a background in network administration and systems management, so I have a decent idea of how this should work, nevertheless I am miserably failing to set up our WAN the way it is supposed to work.
I have multiple small sites connected by VPNs to our central office, in a classic star topology, with the main office router acting as a small VPN concentrator (there are only 4 branches).
Each site has a router, one or more switches and APs, and a local hardware controller.
Everything seems to work, VPNs are up and running and the whole system seems reliable.
Unfortunately I can connect to each of the branches from our main office, and the way around, but I can't connect the branches between each other, even if I supposedly configured the whole network routing correctly.
I set up static routes from each subnet (each branch has its own subnet) to the others, with the IP of the main office gateway as first hop.
The same way around, I configured static routes from the main gateway to the branches, even if I guess the path should be automatic, because it's a local link.
I also set up an ACL policy in the main router to allow traffic between the branches, but unfortunately it doesn' t work.
What am I missing? Any idea?
Thank you in advance