Hello,
I created a IPSEC VPN gateway between 2 Dlink DSR-250N routers. After this, I programmed DHCP relay and VLAN at the remote router so the PCs get IP addresses through the VPN at my local Windows server. I then programmed VPN client policy authentication for mobile devices using an external auth AD server on the local DSR-250N router. Works, no problem. DHCP on the local DSR-250N is disabled.
I tried to use a similar VPN client policy config (same AD server) at the remote end and it did not work. The idea was to use the VPN tunnel to access the AD server at my end for VPN account authentication via a VPN client policy (Edge Device-Authenticate AD Server). I specified same server info in the External AD configuration and the server check failed. I tried to ping (Maintenance->Diagnostics->Network Tools) from the remote DSR-250N to the local Windows server IP address and it failed. It seems like the DSR-250N doesn't allow traffic from itself through the IPESC VPN tunnel to an another DSR-250N LAN. Pings from local to remote LAN machines (and vice versa) work.
Both DSR-250N routers have 3.17B401C_WW firmware.
Is there a way to allow the flow of traffic from within a DSR-250N to another DSR-250N router? Did I miss a something in the router configurations?
Thanks,
