Reach Web Service through the IPSec VPN
Hello there,
I want to reach some specific IP address through the VPN, but cannot do it.
First, the configuration: I have ER7206 as my router and manage it with my OC-200 controller. My ISP modem works in bridge mode, so when I check the IP address of the WAN connection, I see directly my public IP address on my router.
I have an IPSec site-to-site VPN connection with a partner. I can reach some specific subnet directly through this VPN and call some web services on partner side. No problem in that. Here is the VPN Status page on Omada Controller (I blurred out sensitive info).
With this configuration, I can access to a service on, for example, 10.0.148.15 from my PC with local IP address of, for example, 172.17.93.8
Here is my problem: My partner tries to give me access to another third-party service (they have site-to-site VPN). I need to access that service through the same VPN connection. To do that, I defined a static routing through the Omada Controller like this:
My partner also did necessary configuration on his side.
However, when I define this route, I cannot access to the third-party service. Interestingly, when I run a traceroute on my PC to the destination third-party service IP, there is no difference between the result when I define the route and the result when I do not define the route. I mean, I run a traceroute to the destination IP and get a table of IP addresses as a result with ping values. After that, I define the static route and run a traceroute, I get exactly the same table. It seems that the route definition has no effect. I want the data goes through the site-to-site VPN we established with my partner.
What am I doing wrong? I will happly post more info and screenshots if necessary.