Dear Community,

I'm trying to configure VPNaaS between 2 sites, both sites have one openstack subnet with 2 networks.

left side. 

subnet 192.168.0.0/24 gw 192.168.0.1

subnet 172.0.0.0/16 - the scope for this is just local network, it doesn't have to be routed outside. this subnet is broke into /24 subnets and assigned to differnt nodes on the network, and they are reachable with explicit routes on the router. It's basically a kubernetes pod network, and the routes are managed by openstack-cloud-controller-manager.

right side

I need connectivity between the 2 sites on both layers 192.... and 172...

so I tried to endpoint groups, a local of type subnet and a peer of type cidr with the cidrs `192.168.0.0/24,172.0.0.0/16` and respectively `192.168.1.0/24,172.1.0.0/16`.

With this setup the vpn connection doesn't come up.

If I create the peer cidr with only one cidr `192.168.0.0/24` and respectively `192.168.1.0/24` the vpn connection becomes active and works as expected for the 192... netowrks. I tried adding manually the routes for the 172.0.0.0/16 on one side and 172.1.0.0/16 o the other side with to the same gateway `169.254.0.2` but it doesn't work.

I'm wondering how could I configure the VPN to have both networks routed 192... and 172...

Appreciating any input on the topic.

Cheers,

Robert