@Stariaa 

setting up site to site vpn on a TP-Link router is quite simple, do you have a public ip right on the router WAN interface or is the router behind another router and has a private ip on WAN interface?

if you have a public ip on the TP-Link router's WAN interface, it should work.

I have never gotten auto ipsec to work so I always use manual ipsec configuration.

  @Stariaa 

here is an example of one of my VPN tunnels, use the same settings on both routers

  @MR.S Hi 

The Remote site shows a public IP on the WAN when I check via the omada controller but the Main site doesn't show. BT Router - - > Tplink router. 

I use port forwarding on the bt router for the following ports. 4500, 500 UFP and I setup a NAT on the Managed router in omada to point to the omada controller for the main site. 

  @Stariaa 

you should be able to set up site to site vpn with only one public ip, but then you must use a local ID on the site that does not have a public IP.

try setting up on the site without a fixed IP on WAN.
negotiation mode: initiator
local id type: name, site-a

on the site with fixed WAN IP 
negotiation mode: responder
remote id type: name, site-a

Clive_A wrote

Hi @Stariaa 

Thanks for posting in our business forum.

Stariaa wrote

  @MR.S Hi 

 

The Remote site shows a public IP on the WAN when I check via the omada controller but the Main site doesn't show. BT Router - - > Tplink router. 

 

I use port forwarding on the bt router for the following ports. 4500, 500 UFP and I setup a NAT on the Managed router in omada to point to the omada controller for the main site. 

Is your BT router getting a public IP? Port forwarding is correct but this still requires your BT router WAN to be a public IP.

  @Clive_A Hi 

My BT Router is getting a Public IP the one on the Main Site displays the public IP when i check it. Both BT Routers get it however for some reason the WAN in the TP link only the Remote Site displays the public IP from the BT router but on the Main site it doesn't.

I have configured the portforwarding on the bother BT routers and TPlinks via the NAT to be sure. 

  @MR.S Hi 

did the configuration on both site and made it same to yours, 

this image is from the remote site 

this is the main site

Still doesn't get a ping from the each other subnet, i have a vm on the remote site to test out ping to the main site but nothing is getting through, attempting to ping the default gateways of each other sites

  @Stariaa 

Proposal is not the same.

and local id on one site same name on remote id on other site.

you cant use local id on both site.

in short, local id on site with no public ip 

and remote id on site with public ip

  @MR.S ok

this is on the remote site that the TP Link router displays the public IP

this is the one on the main site that doesn't diplay the Public IP on the tplink router WAN

I have also tried the usual local ID & Remote ID pointing to each other seen below

Remote Site

Remote ID: site-a

Local ID: site-b

Main Site

Remote ID: site-b

Local ID: site-a

still don't get a ping for some reason