Internet Stops when Open VPN Connected
-
Assuming you have it configured to route all traffic over the tunnel when the link is up, you probably haven't got the outound NAT configured yet to route any connected client on the OpenVPN subnet out over the local internet connection.
Check in Firewall > NAT > Outbound.
-
I have 2 rules in the NAT outbound on the WAN interface. One sending any data from the VPN to port 500 and the other sending any data to any where.
-
One other point to note not sure whether it is set to local internet or tunnel, think tunnel from the settings, could be wrong though!
The local internet dies as soon as the VPN connects.
-
@stevencavanagh said in Internet Stops when Open VPN Connected:
The local internet dies as soon as the VPN connects.
Is this even what you want?
Do you want to force all upstream traffic over the VPN, or do you only want to get access to the remote site?Is internet access even allowed by the firewall rules?
If you want internet over the VPN, ensure that it's not a DNS issue.
Just try to ping 1.1.1.1 or 8.8.8.8 to check this. -
To be honest, I am not bothered whether I continue to use the local internet or mine at home but at the minute I get neither when OpenVPN connected
-
I believe the firewall rules allow Internet access. Not tried pinging 1.1.1.1 etc yet. Can ping via Pfsense (connected via OpenVPN). Not sure how to ping from Ipad, will need to look that one up
-
Post up your config otherwise it is just shooting in the dark.
-
@Popolou Will do when I get back to lodge!
-
@stevencavanagh said in Internet Stops when Open VPN Connected:
To be honest, I am not bothered whether I continue to use the local internet or mine at home but at the minute I get neither when OpenVPN connected
You should clarify that with yourself before you set up a VPN, however. This makes some difference in configuration.
-
@viragomann said in Internet Stops when Open VPN Connected:
@stevencavanagh said in Internet Stops when Open VPN Connected:
To be honest, I am not bothered whether I continue to use the local internet or mine at home but at the minute I get neither when OpenVPN connected
You should clarify that with yourself before you set up a VPN, however. This makes some difference in configuration.
Ok, I wanted to send all traffic through the VPN. However, I do not remember when following the guide months ago whether it gave an option or not.
-
@stevencavanagh
As far as I know, it does. If you choose to direct all upstream traffic over the VPN "redirect gateway" should be set in the server, which might be the case, since you cannot access the internet.Then need an outbound NAT rule to masquerade the internet traffic from the VPN client. You mentioned above, that there are outbound NAT rule. Ensure that the source is the OpenVPN tunnel network in the additional rules, apart from the rules for LAN subnet.
And also you should provide a DNS server to the clients. This can be a local or a public one, but ensure that access is allowed.
If you provide the local DNS resolver, maybe you need to add the tunnel network to its ACLs. Access should be allowed automatically, but this doesn't ever work.