Hello everyone,

 

im new to Omada SDN and strungling at the Site2Site VPN.

 

Background:

Small company.

 

1 HQ - Static IP - ER605 V2 - OC300

3 Branches - Dynamic IP (DynDNS over NO-IP) - ER605 V2 - Omada compatible Switches and APs

 

What do i want?

All branches cann acces and use central RDS Server in HQ

All MFP/Printer are installed on Printserver in the HQ so that they appear on the RDS Server

All branches have Dect Systems and IP Phones which have to connect to the PBX at HQ

 

What have i done?

 

Created S2S connection from every branch (initiator) to the hq (responder)

--- Cause HQ got static IP

 

Every location have multiple Vlans:

LAN - managment

Intern - Access to server

Printer - For printers

Telephony - For Voip

Guest - For Guests

IOT - Heater and PV stuff

 

Intern, Printer and Telephony have to have a connection to HQ.

 

At the moment the branches can ACCESS AND USE the RDS and SMB server.

 

But everything which starts from HQ going out isnt working.

Example: Ping or HTTP/HTTPS access to a printer or phone or anything else.

 

Traceroute stops at the router in the HQ and timedout.

 

I have no ACL Rules at the moment.

Tried setting up static routes, but no result.

 

Configs at Branches will be the same in the end.

 

Every location got their own subnets and vlans.

Starting with 192.168.XX.0/24 and counting up in the third octet.

 

SW

192.168.10.0

 

KS

192.168.20.0

 

PS

192.168.30.0

 

IF

192.168.40.0

 

I hope this is clearly understandable :-D

 

Please give me some hind and tips.

 

So here are some configurations.

 

Names:

SW = HQ

KS and PS = Branches

 

 

Configuration @ SW = HQ

 

 

 

 

Configuration KS = Branch

 

 

 

 

Thanks in advance.

PhiiiiL