Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    VPN is ok but some devices are not accesibles

    Scheduled Pinned Locked Moved
    IPsec
    3
    3
    139
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      Chelex92
      last edited by

      Good day avery body, i have a problem with mi conection VPN, recently we want configure some devices AccessPoint Omada of Tp-link in different places with a server controller located in one only place.
      We uses Site to site Openvpn normarly with multiple pfsense located at each site.
      As problem is when success connect the vpn , we realy can do ping to various devices, can see their web portals, for example of printers or scanners o one dvr, but cant see web portal of that Tp-link Access Points, can do ping but not see their web portals.
      The same thing ocure when we use Vpn Ipsec Site to Site or use like a test OpenVpn server SSL/TLS and User Authentication in a Windows Client.
      Can you help us?
      May be we forget some rule or route, and now we remember what in other case, in other pfsense , we have a problem similar but are not realy urgence, we do ping tu us Vmware Esxi but can see their portal web.
      Can you help us?
      May be we forget some rule or route And now we remember what in other case, in other pfsense , we have'd a problem similar but did not realy urgence, we can'd ping to one Vmware Esxi but we no can'd see their portal web.

      I'm sorry by mi english if you have problems to understanding me <3

      V johnpozJ 2 Replies Last reply Reply Quote 0
      • V
        viragomann @Chelex92
        last edited by

        @Chelex92
        Ensure that the concerned devices have correct gateway settings.

        Also they possibly block access from outside of their local subnet and there is an option to allow it.

        1 Reply Last reply Reply Quote 0
        • johnpozJ
          johnpoz LAYER 8 Global Moderator @Chelex92
          last edited by

          @Chelex92 said in VPN is ok but some devices are not accesibles:

          but cant see web portal of that Tp-link Access Points

          One thing with AP, is sometimes they don't have gateways set - so you can not view them from other networks, since they don't know how to get back.. Do these AP have gateways set pointing back to pfsense IP?

          If that is the case you can do a outbound nat, ie source nat so the device thinks your talking to it from the IP of pfsense on its network. This is just doing an outbound nat on the interface of the network this AP is attached to.

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 24.03 | Lab VMs 2.7.2, 24.03

          1 Reply Last reply Reply Quote 0
          • First post
            Last post