I've successfully created the static route/gateway pairing on my pfsense router (Router A.) I can now access Router B and Router C when connected to that the WiFi on Router A -- this was my goal and it's working!
But I can't make vice versa work. While connected to Router C, I'm not finding a route to Router A. It appears to be routing through the WAN interface when I do a tracert?
It's worth noting that I'm running OpenMPTCPRouter on Router C -- if my rule above seems correct there must be something in it's settings that is routing this traffic?
OK now it appears to be routing through the correct gateway of Router B but not being forwarded from there -- do I need to bridge the two lan interfaces on Router B somehow?
Tracing route to 192.168.1.1 over a maximum of 30 hops
1 2 ms 3 ms 2 ms OpenMPTCProuter.lan [192.168.100.1]
2 4 ms 1 ms 1 ms 192.168.100.2
3 * * * Request timed out.
4 * * * Request timed out.
The firewall in B needs to allow forwarding. The easiest way to do that is to put both interfaces in the lan zone and make sure the default forward is accept.
I don't mind so much, although you could split it in 2 posts. The issue is that you are running OpenMPTCProuter distro, which is modified OpenWrt. I suppose this is router C.
The only weird thing I could see is the the mangle rule which marks the packets for the lan doesn't have any hits: [0:0] -A omr-bypass -m set --match-set omr_dst_bypass_eth0 dst -j MARK --set-xmark 0x5398/0xffffffff
Run a ping from router A to 192.168.100.1. Does it work?
If not, run tcpdump on router B tcpdump -i any -evn icmp , run again the ping from A to C and post the results.
Boy do I feel dumb. PFSense by default allows packets from known hosts in its subnet but did not allow packets outside of it's subnet. I've fixed that. Thank you so much for your patience!
I've run into another issue -- when I connect to either of my openwrt routers from my main network -- the SSH session closes. There's nothing in the logs to indicate why and I've tried logging in with 'ssh -vvv -l root 192.168.50.2' it becomes unresponive after a few minutes (even if the session is active.) No error messages are displayed. Bitvise drops the connection but is able to reconnect immediately.
If I log into router B w/ with its 192.168.1.15 address (so the same subnet as my A network) it seems to work fine and I don't have any time-outs. Any thoughts on what might be going wrong?