• OpenVPN static routing

    Locked
    7
    0 Votes
    7 Posts
    12k Views
    R

    @GruensFroeschli:

    To be honest i'm surprised you can get it actually working with a Windows-xp machine doing routing…

    To enable TCP/IP Forwarding in Windows XP, you just need to enable a setting in the registry:

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
    IPEnableRouter = 1

    For more information on it, please check out the following links:

    http://www.home-network-help.com/ip-forwarding.html
    http://support.microsoft.com/kb/315236

    Try setting the "Bypass firewall rules for traffic on the same interface" option under system–>advanced

    Has definitely already been enabled, as it will not let me ping remote hosts at all without that option enabled.

    But if you have 2 pfSense's on both side i would just stick to let the two do the routing.

    I have one minor issue when using two pfsense devices for a direct site-to-site connection.  I will get a post ready for those items.

    Thanks for checking in with your input.  It is much appreciated!

  • Version 2.1 update?

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • Understanding ping, ping-exit and ping-restart directives

    Locked
    1
    0 Votes
    1 Posts
    6k Views
    No one has replied
  • User account

    Locked
    10
    0 Votes
    10 Posts
    4k Views
    J

    Try drawing a diagram of how you want it to be setup then we might understand it better but I'm no Linux/BSD hawk but still managed to set it up. with different user accounts, you don't need to create the .ca's in the pfsense box you can create them on a different one aslong as ALL of your .ca's are created on the same computer(no exception).

  • Remote Desktop problem over OpenVPN Gui->Lan

    Locked
    4
    0 Votes
    4 Posts
    7k Views
    B

    No problem, glad you got it sorted. Sometimes you have to go down to nearly bare metal!

  • How to log traffic incoming on OpenVPN->LAN

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    T

    Thanks for the info.

  • Additional help in my openvpn setup

    Locked
    3
    0 Votes
    3 Posts
    4k Views
    J

    @GruensFroeschli:

    The OpenVPN interface is not firewalled.
    The virtual OpenVPN interface is treated like a normal interface, just without the firewalling capabilities.

    To be able to NAT from the OpenVPN subnet to the internet:
    http://forum.pfsense.org/index.php/topic,7001.0.html

    Thank for your reply but I still don't understand/analyze the configs/directives that i'm missing.

    Do I have mo add a LAN interface alias (192.168.10.1 ) for my openvpn segment or just having advance Nat  192.168.1.0/24 & 192.168.10.0/24 for my LAN & openvpn will suffice? or do I have to do both?

    I need to be precise in my configs because my box is running in the production and I dont want to encounter system downtime, that's why I'm analyzing my situation carefully.

    Again thank and good day.

  • Multiple road warriors to one pfSense box

    Locked
    5
    0 Votes
    5 Posts
    5k Views
    N

    tnx. all.

    solved

    recreated everything once again, like http://forum.pfsense.org/index.php?topic=7840.msg44065, just created a few ovpn_client files
    and it works.

  • Build-key-pass in windows

    Locked
    7
    0 Votes
    7 Posts
    11k Views
    R

    Thank you! ;D
    Not so good with all that code…

    It created 3 files test.crt
    test.csr
    test.key

    All normal?

    What is the csr for anyway?

    I will try it later and let you know

    Thank you very mutch

  • OpenVPN connection timeout

    Locked
    5
    0 Votes
    5 Posts
    29k Views
    J

    No, I don't have that option in the client configuration, today I've changed again the configuration this time using UDP as protocol with LZO compression and some specified ports besides 1194 and voila, it's working  ;D
    I can see that the client used port 1194 instead of any random port, weird, right? Anyways it's working and that is what matters!  ;D

  • RESOLVED: Please help, such an odd routing problem

    Locked
    16
    0 Votes
    16 Posts
    9k Views
    N

    Hi

    err….address pool.... :P

    cheers,

  • Unable to connect to openVPN pfsense

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    Cry HavokC

    With so little information, I doubt it.

    Can you provide a simple network diagram, showing the networks and the IP ranges.

  • VPN connects but no internet for client

    Locked
    3
    0 Votes
    3 Posts
    4k Views
    chpalmerC

    Thank You sir!  :)

  • Connection problem

    Locked
    4
    0 Votes
    4 Posts
    4k Views
    GruensFroeschliG

    @GruensFroeschli:

    Also please provide the config-files of the server and the client.
    http://forum.pfsense.org/index.php/topic,7001.0.html

    Mostly the file of the client since you seem to have missconfigured something there.

  • Write UDPv4: Operation not permitted (code=1) Error all the time

    Locked
    16
    0 Votes
    16 Posts
    30k Views
    E

    Hello

    I had the same problem as you, change port from UDP 1194 to TCP 1194 for both client and server and it worked.

    try it.

    Edward

  • Block access to one server and port from "Site A" to "Site B"

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    GruensFroeschliG

    How would you connect to the pfSense?
    Does each client install OpenVPN or do you have another firewall solution?

  • Connect to the Internet using openvpn

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • Disable ping-restart

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • All client get same IP

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    B

    they all had different certificate but the common name was the same in the certificate.

    I hate myself sometimes! ::)

  • OpenVPN connection reset

    Locked
    1
    0 Votes
    1 Posts
    5k Views
    No one has replied
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.