I need to connect 3 sites (Site A,B and C)+ AWS Cloud together over a site to site VPN.

• Each site should have a VPN tunnel to the cloud

• Each site should have a VPN tunnel to the other sites performing a Mesh netork

  Site A to Cloud

  Site B to Cloud

  Site C to Cloud

  Site A to Site B

  Site A to Site C

  Site C to Site A

I am using 3 laptops for each site. I installed VMware workstation on each laptop and inside, I created 2 vms. One for the pfSense VPN (has 2 virtual NICs) and other one is windows 7, representing LAN.

Each laptop is connected to home DSL router which I cant do any configurations to. I use only the public IPs assigned to those routers.

So far, I could create VPN tunnels to the AWS cloud. Each win7 can ping to the EC2 instance in the cloud. But, I still couldn't create site to site VPNs. I tried so many times but it won't work. In all the tutorials, it shows the pfsense WAN has an public IP address. But mine, it has private IP which assigned by the home wifi.

My question is,

1) Should the pfsense WAN interface have a public IP address?

2) If we connect to 2 sites from one site (2 VPNs), do we have to have 2 physical NICs and 2 seperate public IPs?