I'm struggling with establishing an IPSec Point to Point VPN. I have two identical EdgeRouter Lite's that I'm trying to connect, both connected to a cable modem. What I would really like to see is a actual current example from Ubiquiti showing how to use the gui and whatever additional steps to connect two edge routers. The documentation on the web uses either cli or is deprecated. For example, they start with adding the IPSec interface in the Wizard, which was removed in v1.9.0.
I have two routers, both were configured with the WAN+2LAN2.
Home
Eth0: WAN: dhcp from Cable Modem
Eth1: 192.168.1.1 (192.168.1.0/24)
Eth2: 192.168.2.1 (192.168.2.0/24)
Site2:
Eth0: WAN: dhcp from Cable Modem
Eth1: 172.20.1.1/24 (172.20.1.0/24)
Eth2: 172.20.2.1/24 (172.20.2.0/24)
Home VPN Config:
Peer: WAN IP Of Site2 (using known static IP for testing)
Local IP: 192.168.1.1
Pre-Shared Secret: xyz
Local Subnet: 192.168.1.0/24
Remote Subnet: 172.20.1.0/24
Site 2 VPN Config:
Peer: WAN IP Of Home (using known static IP for testing)
Local IP: 172.20.1.1
Pre-Shared Secret: xyz
Local Subnet: 172.20.1.0/24
Remote Subnet: 192.168.1.0/24
I've enabled icmp on both eth0 and eth1 via the WAN_Local rules, on both sides.
If I use the Wizard "VPN Status"
Status is down.
ubnt@ubnt:~$ show vpn debug
VPN ipsec not configured
ubnt@ubnt:~$ show vpn ipsec sa
<BLANK> ie no response
ubnt@ubnt:~$ show vpn ipsec status
IPSec Process Running PID: 19764
O Active IPSec Tunnels
IPsec Interfaces:
ubnt@ubnt:~$
Any suggestions? I didn't include my rules. I'm using a barebones setup in a lab environment for testing, but I'm applying what I learn to my actual setup. My setup has a bunch of dhcp leases and firewall rules already present.