Hello, I have two sites, A and B, and they have a current site-to-site VPN. Both sites also have a client-to-site vpn, and I want to make one client-to-(Site A and B) vpn. I don’t much care what site this connection lives on, but I am struggling to find documentation on how to do it. Site A is a pfSense router and Site B is a ubiquiti dream machine pro. Are there any articles that I can look at to learn how to do this? I appreciate your time.
cj
What do you mean by client? Like are you saying the client is a remote PC that needs to talk to both sites using something like openVPN or wireguard?
Yes that’s exactly what I am after
Since you have site to site established. What I would do is setup an OpenVPN server on the pfsense. Then in your sever setting allow the other site subnet through.
You’ll have to adjust your IPsec tunnel to allow the subnet of OpenVPN clients.
You’ll need to create a firewall rule to allow this though and you’ll need to allow the traffic over you IPsec interface as well. The caveat with doing it this way is there be 2 hops. Meaning if you request something from site2 it will have to go through site1.