• OpenVPN Next Hop mismatch

    20
    0 Votes
    20 Posts
    4k Views
    P
    For other readers: push "route 10.2.0.0 255.255.0.0" That is actually trying to tell siteB that the OpenVPN link is a route to 10.2.0.0/16 - but siteB actually has the local LAN 10.2.0.0/16. SiteB will be smart enough to effective ignore that, and talk directly to its local LAN. The  line should be able to be deleted. route 10.2.0.0 255.255.0.0 This route put in the advanced box on the server side is OK. But it should already work like this by putting 10.2.0.0/16 inn the "Remote Networks: box. I can't say why the advanced box entry was really needed. iroute 10.2.0.0 255.255.0.0 Client-specific overrides: This is a good thing, and specifically tells the server which connecting client has the 10.2.0.0/16 network at the client end. IMHO this is the thing that really makes it work.
  • INFO: OpenVPN and MTU

    1
    1 Votes
    1 Posts
    18k Views
    No one has replied
  • VPN Select routing

    4
    0 Votes
    4 Posts
    2k Views
    H
    SUCCESS !! thank you thermo ! worked perfectly . . . all i had to do was move the firewall rule to the top and everything just fell into place. thanks again for taking the time.
  • 0 Votes
    3 Posts
    1k Views
    M
    That was it!  Thank you!  Didn't even notice it was set to Peer-to-Peer…  Switched to Remote Access (SSL/TLS) and it worked! :)
  • Tunnel up, no traffic between client and server

    1
    0 Votes
    1 Posts
    853 Views
    No one has replied
  • Force youtube over vpn, mostly working just need some help.

    7
    0 Votes
    7 Posts
    2k Views
    D
    @darkcrucible: It might also be the outbound NAT. Do you use automatic outbound nat or manual? If it's manual then you'll need to add a rule for the other network to go through NAT. If it's automatic then you might need to switch to manual. Not too sure since I've never really used automatic. Aha! Thank you so much for that suggestions! I just enabled manual outbound NAT on the remote server (the one I would like to route all of my youtube traffic through, and added a rule to pass all traffic from 192.168.1.0/24). Thank you!
  • Ubuntu as client to Openvpn on Pfsense

    2
    0 Votes
    2 Posts
    2k Views
    K
    Solved my own issue with a little accidental help from marvosa In the client file on ubuntu, near bottom placed: route 10.0.0.0 255.255.255.0  (substituted my LAN Subnet) I haven't ever seen a good fix for this anywhere, but this is so simple.  Why didn't I do earlier (pfsense needs a facepalm icon) :-[ keywords added for web searches: ubuntu linux mint pfsense openvpn can't access LAN TUN client
  • Access Additional Subnets on Site-to-Site VPN Link

    2
    0 Votes
    2 Posts
    1k Views
    D
    Assuming you've setup the HQ as the server and the Satellite as the client, you need to add a route(s) to the HQ config to define the client subnet(s) ie: route 10.0.0.0 255.255.255.0 route 10.0.1.0 255.255.255.0       ….. etc.  Need to be added to the server config. The 'push "route....' lines on the server side send the appropriate routes for the client to understand the server's subnets. You don't need any 'push "route...' lines on the client side. If you post a screenshot of your server and client configs, you may get more specific help on your setup
  • OpenVpn > SipProxy

    3
    0 Votes
    3 Posts
    1k Views
    M
    I thought this was going to be more difficult.  Turned out I had my SIP client settings field populated with the wrong authorization number, that would do it.  It also required the SIP client "force address" setting match the PfSense LanGW IP given the OpenVpn tunnel via Wan. Happy days…
  • Bridging Multiple VLANS with OpenVPN Tap

    6
    0 Votes
    6 Posts
    12k Views
    K
    https://forum.openwrt.org/viewtopic.php?id=33678 Its not pfsense but it is seeming to sort of be what you want to know.
  • Gateway Monitor not working with OpenVPN client

    1
    0 Votes
    1 Posts
    981 Views
    No one has replied
  • Need help deciding between port forwarding or select routing

    1
    0 Votes
    1 Posts
    753 Views
    No one has replied
  • [SOLVED] Use OpenVPN TUN as TAP?

    17
    0 Votes
    17 Posts
    4k Views
    K
    If you are going to run a SIP server, remember to forward port 5060 OK?  I read some places it helps.
  • OpenVPN Client Export tab 404's

    5
    0 Votes
    5 Posts
    1k Views
    ?
    Reinstalling the package worked. I have no idea why it didn't grab the package during the upgrade. anyway thanks guys! life savers. :)
  • Openvpn clients traffic not getting name resolution

    2
    0 Votes
    2 Posts
    949 Views
    K
    I provide the IP of my DNS forwarder (The LAN IP in my case) because I force all traffic through the client.
  • OpenVPN and vlan routing on 2.1

    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • LAN to LAN - Problems ;)

    17
    0 Votes
    17 Posts
    6k Views
    D
    Ok my fault. I was talking about 800kb/s throughput when running openvpn on the dd-wrt router. I tought this was clear due to the advice in the previous post. Thats why i want to use the ubuntu-server.
  • How to create an OpenVPN client to IPredator?

    4
    0 Votes
    4 Posts
    3k Views
    O
    i installed certificates, but there are some config lines , namely nobind auth-retry nointeract tls-client ns-cert-type server keepalive 10 30 tls-cipher TLSv1:!ADH:!SSLv2:!NULL:!EXPORT:!DES:!LOW:!MEDIUM:@STRENGTH persist-key persist-tun tun-mtu 1500 mssfix passtos verb 3 which i paste in "Advanced" section in https://192.168.1.1/vpn_openvpn_client.php?act=new but it still dont work, any ideas? why i cannot just upload .conf to config directly?
  • 0 Votes
    1 Posts
    799 Views
    No one has replied
  • Best way to separate client traffic?

    7
    0 Votes
    7 Posts
    2k Views
    K
    Sounds like you have it all worked out then.  :D
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.