Access from WAN to external site through VPN
I have VPN between two sites (each with an ER605 router managed by an OM200) connected using IP-sec. Site B does not have any pubically accessible IP address (the ISP NAT's everything so there is no way that I have found to get inbound traffic) So the VPN is created with Site B in initiator mode and site A in responder mode. I have a server at site B that I would like to be able to access from the outside world. Since the site it is not accessible from the public internet, I was hoping I could create a port forwarding rule at site A to forward to the server at site B. But the router doesn't seem to want to forward through the VPN The rule works: if I set it to a server in Site A, the external requests come through, but if I change the destination IP port to an IP in the Site B network, the request is not sent. Is there something I am missing: a static rout or something to tell it to allow an external message to be forwarded through the VPN? Or something in the Site B router to tell it to expect this? Or this just not possible?