NORDVPN OpenVPN UDP Client / LAN Traffic.
-
Preamble/Whole Picture:
I recently got my hands on a decommissioned Sophos XG86 and reflashed it with pfSense and it has been working great. I have installed this behind my ISP modem/router/ap.
After a few weeks of messing around in my lab I decided that I wanted to upgrade the switch I was using to an 8 port POE+ managed switch. This would allow several benefits for my home lab setup one being I could start to segment my traffic.
The new switch just came in and I have successfully configured the VLAN [tag3] on the switch and pfSense. Next, I successfully installed NORDVPN OpenVPN UDP Client and pointed only the VLAN to NordVPN.
Now this is where I am spinning my wheels and I know I am overlooking something simple. I cannot access any LAN resources by IP or FQDN when the NordVPN interface is enabled. I think this is probably because my pfSense is sending local traffic down the VPN. But hey -- im stupid.
TL;DR: After setting up NordVPN as OpenVPN Client VLAN resources become unavailable.
Interface Configurations:
Interface: WAN
IP Configuration: DHCPInterface: LAN
IP Configuration: STATIC IP: 10.3.10.1/25
DHCP SCOPE: 10.3.10.2 - 10.3.10.10Interface: VLAN
IP Configuration: STATIC IP: 10.3.10.129/28
DHCP SCOPE: 10.3.10.130 - 10.3.10.131Firewall Rules:
LAN:
VLAN:
NORDVPN:
Firewall NAT Rules:
Be the first contestant on: Why am I dumb today?
-
@pluhdl Disable pull routes in the nord vpn settings.
BTW you can drag and drop your screenshots directly into your forum message no need to link them.
-
-
@pluhdl Ah it’s normally the answer.
It’s not a subnet overlap is it, nord hand out 10.x.x.x address space.
-
The local address in the screenshot is the isp router's lan network.
The virtual address is 10.100.0.2. I am assuming its a /24 network (10.100.0.1 - 10.100.0.254). If it is then there should be no overlap of network ip ranges.
