I am trying to set up a new EdgeRouter Pro with the VPN connections to replace a set up I had before on a Cisco 2911.
I have 2 WAN connections (1 PPPoE and 1 with Static IP), load balanced as failover and on the inside I have VLANs on eth2.
On the Remote VPN side I have these 2 subnets: 10.12.60.0/24 and 10.12.90.0/24
On the Local VPN side I have these: 10.0.20.0/24 and 10.0.22.24/24
It looks like the VPN tunnel is being correctly established.
If I turn on logging for the NAT Masquerade, I can see that the traffic from the remote VPN is being excluded from NAT:
When I try to ping a device on the remote end from one of my local network, I never get any reply. However if I do it from the router console, I am able to get a reply (even though I use "-I eth4" it still pings from "10.0.20.1" which is not the correct IP for that interface. I also do not see in the NAT Exclude Log any traffic from my end to the VPN.
So it looks like the data is only travelling from the remote VPN subnets to mine but not vice-versa. Maybe that's why I'm never recieving a reply.
If I traceroute from a device on my LAN to a remote device after the first hop (my router) I get nothing:
I have no idea what is wrong in my configuration and I would be really glad if someone could point me to the right direction.
My configuration is as follows: