ping fails to remote vpn host
-
on pfsense, if I ping a host behind firewall from a remote vpn host, it works. but if I ping from internal host behind firewall to a remote vpn host, I don't see packets going to openvpn interface on pfsense. do you know what could be the reason ?
10.0.254.1 ( internal host ) --- NAT --- 192.168.30.1 ( LAG Interface ) -- WAN (OPENVPN 10.0.200.1 ) -- VPN host ( 10.0.200.2)
so ping works from 10.0.200.2 to 10.0.254.1 ( and I can see packets on tunnel interface in pfsense packet captures )
ping doesn't work from 10.0.254.1 to 10.0.200.2 ( can't see any icmp packets on packet capture on pfsense tunnel interface )
However, ping from 10.0.254.1 to 10.0.200.1 works ( I can see packets on packet capture on pfsense tunnel interface )
Any suggestions how to make this work ?
thanks
-
@Dman_runner said in ping fails to remote vpn host:
ping doesn't work from 10.0.254.1 to 10.0.200.2 ( can't see any icmp packets on packet capture on pfsense tunnel interface )
I would expect, that the remote host will block this, since the source is outside of its local subnet. But I'd also expect to see request packets going into the tunnel.
-
@viragomann It works now. I had to add another firewall rule on the LAG side.
thanks for your response