How do I allow pfSense to access WAN subnet?
-
My pfSense is on 10.0.50.x network in AWS.
How do I let pfSense OpenVPN clients see the rest of 10.0.50.x network? -
@NetComrade
Normally with a pass rule on the OpenVPN interface which allows this destination or even any.However, is pfSense the default gateway on the VMs?
If it isn't you have to configure the routing property. -
@viragomannn
Thanks for pointing to the right direction..Looks like I need a new subnet on AWS within the VPN for my other machines and set pfSense as default gateway.
Will create another thread.
-
@NetComrade
If pfSense isn"t the default gateway you can masquerade the traffic to the local subnet with an outbound NAT rule to get access.
However, then the VMs only see the pfSense IP, not the VPN clients IP. -
Thanks.. I followed the following and it made sense to me.
Other than what's in the link I also allowed ANY/ANY access on private network interface
https://yhf8377.medium.com/replace-aws-nat-gateway-with-pfsense-vm-5454066585c2all works