Topic: strongswan clients can't reach switch
I need help with setting up what looked like quite simple net:
I have two openwrt devices: TP-Link WDR3500 and WR1043; my private network is 172.20.20.0/24
I use 3500 as a router/ap, but as it is not a gigabit switch, i use my spare 1043 as a "dumb switch" with static 172.20.20.2 and no AP, firewall or wan.
Desktop (dhcp client) and NAS (static) are connected to the 1043.
Scheme is as follows:
r1 r2 Desktop 172.20.20.1 172.20.20.2 / WAN - WDR3500 - WR1043 | \ IKEv2 NAS 172.20.20.64/29
Desktop got its address via DHCP from r1 with a noticeable delay, but still got it. NAS is accessible from desktop and WLAN clients.
Issue is that clients from IKEv2 are unable to connect or even ping 172.20.20.2 and NAS/Desktop.
1043 has all ports in one vlan, but it seems that i am missing something — do i need to set up a route?
Could you, please, help?