Goal: Establish a Site-to-Site VPN tunnel between an office and a remote-site behind a Double-NAT connection. (e.g 4G Hotspot with a CGNAT IP)
(Remote Site Setup)
LTE Modem:
e.g Sierra Wireless Airlink GX450 - 4G Verizon LTE Hotspot / GPS
- Outside Network: Operator Private IP range
- Inside Network: 10.50.0.0/24
Linux Router A:
e.g Ubiquiti EdgeRouter ER-X
- With OpenVPN Client
- Outside Network: Public IP
- Inside Network: 10.50.1.0/24
(Office Setup)
Linux Router B:
e.g Ubiquiti EdgeRouter Lite
- OpenVPN Server
- Network: 10.0.1.0
Current Issue
At the moment, I have the Remote Site Router connecting to an OpenVPN server running on the Office Router B. Classic OpenVPN Client/Server scenario. I'm able to access the router B with no issue. However I am unable to access any other resources behind the router B network. I tried pushing routes in the OpenVPN client's configuration, but have had no success. But I didn't believe it was the correct procedure. The Remote site is connected over a Double-NAT because of the Mobile Providers Carrier Grade NAT the LTE Modem connects to. (e.g APN)
Ultimately I would like to create a site-to-site vpn (ipsec?) with the remote-side connecting out to the Office Router B Unfortunately, I'm having trouble finding information to accomplish such a task with the whole Double NAT Problem.
Any information regarding VPN clients connecting out behind a Double-NAT connection would be very helpful
Thanks in Advance
