In my setup I have a S2S AutoVPN between MXs. The VPN tunnel is using Split-tunnel, but I want to force (static route) certain internet IPs or internet subnets to be announced from the main hub so the branch MX will send traffic to the main hub and break out to the internet there. I try to add a static route on the main hub and enable it for VPN, in the 'next hop' I add my MXs Gateway (ISP gateway) But I get the error '...invalid next hop IP. The IP address x.x.x.x is not on a configured subnet. What am I doing wrong and what should I do ito make this work?
... View more