I have 2 sites, lets say A and B.
I am using private address range 172.16.0.0/16 in different locations at Site A but not using the 172.16.64.0/23 in Site A. So i am using 172.16.64.0/23 in site B.
I have build the site to site VPN between the site A and Site B.
172.16.0.0/16 <> 172.16.64.0/23
The site to site VPN works without having any problem.
When i build the Remote access vpn on site B with POOL 172.16.65.1-10, the firewall automatlically routes the destination traffic 172.16.0.0/16 to site A due to existing site-to-site VPN. So from remote access VPN terminated on site B, i cannot access site B subnets but can access site A subnets without any problem. on site A firewall, i can see the SRC: 10.16.65.1 DST: 10.16.64.1 traffic which meand site B is routing that traffic to site A.
if i rebuild the site to site VPN like below.
Subnets of 172.16.0.0/16 without having 172.16.64.0/23 <> 172.16.64.0/23
Remote access VPN works straight away.
Can you please tell me how can i solve this problem? Is there any way to prioritize the remote access vpn over site to site for routing purpose?
your help in this case will be highly appriciated.