Simple site to site, not even ping the server once connected

adv

Hi everybody :)

I try to figure out something since a couple of days without success. I’m in an IT position, but not network specialist and English is not my native language which doens’t facilitate the troubleshooting.

For sure I made some searches on this forum and tried some tutorials even in my native language, but without success so far. I would like to be sure to understand what I do.

Thank you by advance for your help.

Scenario.

At work I have a pFSense 2.4 acting as router, an Internet Access (static public IP) on WAN, few computers on LAN on 192.168.2.0/24

At home I have an Internet access and a Synology NAS acting as OpenVPN server, on network 192.168.1.0/24, VPN clients get 10.8.0.0/24

I would like, from the LAN at work on 192.168.2.0/24, access home resources on 192.168.1.0/24
It’s working fine with OpenVPN Gui (on the Synology I checked the box to « enable access to local nework »).

I would like to build a simple site to site so no need to use OpenVPN Gui anymore.

In VPN client / Tunnel settings I put :
IPv4 Tunnel Network : 10.8.0.0/24
IPv4 Remote network(s) : 192.168.1.0/24
Settings as General Information / User auth / Cryptographic are correct as I’m connected: picture attached

I created a rule Firewall / OpenVPN : picture attached

Here is what I have in Firewall / NAT / Outbound, I understood it could be important… : picture attached

Here is a ping from OpenVPN virtual interface to the VPN server (10.8.0.5) :

I'm sure I missed a step, and it's probably obvious for you but... I'm blocked...

Thank you for your good advices.

Antoine.

connected.png_thumb

FW_rules.png_thumb

outbound.png_thumb