Give the diagram provided, I see 8 home users connected to modems that need to connect to servers behind Router 1. For this, you would configure a remote access solution (client to site)

@ltxda Got it figured out and working. Thanks to anyone that saw this and was going to jump in to help.

@bcruze Hi, thanks for advice. Very useful. I set up VPN, actually I have 2VPNs for wifi, and one for landline. Yes for general DNS tab, deleted everything but cloudFlare DNS records. VPN-specific DNS servers were configured on Services->DHCP server->xyz interface (assuming Services-.DNS resolver-general settings: "DNS Query Forwarding" is checked. Killswitch was set up on NAT by deleting appropriate WAN-related records - interestingly nobody mentions that NAT entries for outbound port 500 are irrelevant and can be deleted, if one is not using anything but OpenVPN. Works perfectly well. The best simple video user guide was this: https://www.youtube.com/watch?v=8jYibgeAV0Y.

When OpenVPN is disconnected, it can take up to a minute to notice. What is probably happening is your connection was cut off in some way -- either loss of connectivity, or another client with the same cert/username connected and bumped yours off -- and it takes a minute to realize it needs to reconnect.

@skwaler said in Muliple OpenVPN servers each with different gateway: How can i set a different gateway for each VPN? Just configure your outbound NAT accordingly and map them to the external IPs you want.

you could use a remote directory, apply different groups to each server

The route should be set by OpenVPN. But both OpenVPN endpoint, client and server, have to be the default gateway in their respective LAN network. To do so, in the server settings you have to enter the clients LAN (192.168.1.0/24) into the "IPv4 Remote Network/s" box. In the cient settings you will find a box with the equal name where you have to enter the server side LAN (192.168.95.0/24).

Thanx Will read through those /Bingo

@JeGr ok noted

You sir are a scholar and a gentleman, works perfectly, for some reason I thought that the .3 and .1 was enough. put in a 165 at the front and it light up like a christmas tree..

@asphalt3 said in OpenVPN multiple instances for Gigabit speeds: i5-2400 Thanks 4 info

Thus is pretty straight forward, where are you stuck at https://support.strongvpn.com/hc/en-us/articles/360038592794-pfSense-OpenVPN-Setup-Tutorial

@Trey I think you're making things too complex here. Start simple, that's UDP over IPv4. See if that works as needed. Then change to IPv4 and IPv6 UDP. Don't use TCP, unless you have a need for it, as running VPNs over TCP is not a good idea. There should be no need to use NAT on IPv6.

Glad you have it working now. -Rico

You can just create one Alias per target server and add the allowed OpenVPN User IP there. Then create one Firewall Rule per Alias in the OpenVPN tab. This can be done with only one OpenVPN RAS. In this example User1, User2 and User3 can access DNS on Server DC1, only User2 can RDP connect the Terminal Server. [image: 1577979536846-1.png] [image: 1577979551282-2.png] [image: 1577980362776-3.png] -Rico