I think as long as one side of the tunnel is not doing NAT then you would be okay. For a while I had an IPSEC VPN going between my cloud server and my home desktop so that I could access my home desktop remotely and it worked well. Although, I have never tried any layer two tunneling. Report back and let us know how it goes. EtherIP might be simpler to set up.
On Fri, Apr 3, 2020 at 11:51 AM Chris Rawnsley <chris@puny.agency> wrote: > Many thanks for all the suggestions, folks. > > I think I will have a play around with egre(4) and etherip(4) paired > with iked(8) first and then move on to OpenVPN if all else fails. I > will try to simulate the network layout with vmm(4) and hopefully > report back in a few days. > > > On Wed, 1 Apr 2020, at 18:47, Tom Smyth wrote: > > Gre is great and fast and a hell of a lot faster than OpenVPN... > > However and it is a Big However... > > Gre does not typically work Across NATs > > On my side of the link I have an APU2 with OpenBSD working as a > gateway and, potentially, managing this tunnelling too. As I have > not got into details yet, would the NAT issue be avoided if one side > of the tunnel has a public IP? > > -- > Chris Rawnsley > >
