I'm using PFsense as site-to-site VPN to external site.
my network is 192.168.21.0/24
pfsense ip: 192.168.21.2 (tunnel vpn ip: 10.8.0.0/24)
External network 10.132.0.0/20 (I can ping this network from pfsense while VPN is active )
I need to route all 192.168.21.0/24 traffic to 10.132.0.0/20 network.
Is the "static route" the best way?
Static route input form asking: Name; Subnet; Next hop ip.
How can I setup Meraki MX to add my route?
Yes, you need static routes to the remote network pointing to the PFsense IP. And the PFsense firewall needs a route for your internal network to the MX IP.
Thanks for your reply.
Could you better explain the second point?
Why PFsense firewall needs a rout to MX IP? To allow "bi-directional access"?
Is need to allow Google Network access to my local network?
I just see that your PFsense device is part of your internal network. This can give you asymmetric routing to/from your external network. Better put the PFSense box in a dedicated DMZ and configure the routing as mentioned.
Thanks!
Last questions:
Adding route to external networks from LAN everything is working fine.
Last problem: this route is not working from client-vpn.
I tried to connect to office lan from home and the static route doesn't works.
How can I add this route also to client vpn network? (192.168.99.x)
For the Network 192.168.99.0/24 you need