VPN client
-
Please assist me with firewall rule for VPN client.
VPN client connected successfully but not working.
This is my firewall rule:
VPN client interface - source: LAN net
Destination: WAN address,
Is it correct? -
@antibiotic Traffic from LAN should not arrive on the OpenVPN tunnel interface.
See https://docs.netgate.com/pfsense/en/latest/vpn/openvpn/firewall-rules.html#allowing-traffic-over-openvpn-tunnels -
@steveits
I'm saw this guide and follow but result zero. I'm also tried to another guides with manual outbound rules, the same result. Could some1 step by step explain what to do ( I'm newbie). -
@antibiotic
Which VPN client are you running? A client on pfSense itself or a device behind?What is the "VPN client interface"?
-
@viragomann VPN client on pfsense, sir. Vpn interface name: ovpnc1
-
@antibiotic
And whats the purpose of the "VPN client interface"?What's the purpose of the client?
Some infos regarding your intention would be helpful.
-
@viragomann The purpose to make all home network going over this client. All PC's in LAN network to use this VPN client on pfsense before touch internet.
-
@antibiotic
So I assume, you connect to a VPN provider.
There is no special VPN gateway for this if the provider normally pushes default route to you, which is default behavior. Anyway, if it's already configured, you can leave it.But did you set the outbound NAT into the hybrid mode add a rule to the OpenVPN interface?
-
@viragomann Negative sir, any tutorial? I see in NAT hybrid mode but what kind of rule should add? Should I'm transfer to hybrid mode and save it?
-
@antibiotic check out https://docs.netgate.com/pfsense/en/latest/recipes/openvpn-s2s-route-internet-traffic.html I think it’s closer to what you’re looking for.
-
@antibiotic said in VPN client:
Negative sir, any tutorial?
You should ask this you VPN provider. Normally he should provide set up tutorials for certain clients.
Yes, an outbound NAT is needed. If you want to get details here, please come with your related settings first.
-
@viragomann My settings here but not working :
-
@antibiotic
This outbound NAT rule covers only access from pfSense itself. You need also one for your local network.So copy it by clicking the button at the right and change the source in the new rule to your LAN network 192.168.10.0/24.
-
@viragomann did but not working
-
@antibiotic said in VPN client:
did but not working
What does this mean?
No access to the internet?
Wrong WAN IP?Please give details!
-
@viragomann I have internet but , IP checking show me my real IP address not a VPN address.
-
@antibiotic
Please post Status > Gateways.
You may hide your WAN gw. -
-
@antibiotic
Well, the VPN gateway is not the default gateway. I assume, the connection is established, so there must be something wrong in the VPN client settings.
Can you post the "Tunnel Settings" section, please? -
