I'm stuck between a rock and a hard place. I have 15 sites with EdgeRouter Lite 3s, each site is identical configuration with eth0 plugged into a clients network recieving an internal 10.50.xxx.xxx address and eth1 plugged into a single SCADA device with addresses 10.0.1.0/29, 10.0.1.8/29, 10.0.1.16/29 etc.
I would like them all to tunnel back to a ER-8 with a static WAN IP at our head office. The issue i'm running into is that this office's only internet connection is through a cellular provider (air card plugged into ER8) and that device doesnt have any options other than DMZ on that single port (towards the ER8 perhaps) as such when the DMZ is pointed to the ER-8 it seems that the link can be seen but not established.
I am hoping to use it as an office to external connection only. Just to be able to log into the router and the single scada device - while they will both use the internet that is provided.
Any suggestions or am I out of luck? Should I look into an externally hosted VPN where we can all connect to?