Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Vyprvpn and specific port routing..

    Scheduled Pinned Locked Moved OpenVPN
    14 Posts 4 Posters 11.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      rwijbenga
      last edited by

      Hi,

      I have set the firewall according the picture, but it is still not working. I also created a rule under the openvpn client that connects to vypr vpn to allow all traffic… but that also did not help.

      If I am getting it to work I will make a tutorial... I can already make a tutorial for the connection to Vyprvpn. Wil try to do that today when I have some spare time at work...  ;D

      Cheers

      1 Reply Last reply Reply Quote 0
      • E
        ericab
        last edited by

        alright so you've got the firewall rule,

        I also created a rule under the openvpn client that connects to vypr vpn to allow all traffic…

        this possibly ? ```
        redirect-gateway def1

        
        provide me with some screenshots of:
        
        note :  black out or blur any unrelated content !
        
        SYSTEM –> ROUTING --> GATEWAYS
        
        FIREWALL --> RULES --> LAN
        
        VPN --> OPENVPN --> CLIENT --> CONTENTS OF VYPRVPN CLIENT
        
        DIAGNOSTICS --> ROUTES
        1 Reply Last reply Reply Quote 0
        • R
          rwijbenga
          last edited by

          Here are the screenshots.. I have disabled the vyprvpn rule because if I enable it no web traffc was possible…

          If you need more info let me know !!

          1 Reply Last reply Reply Quote 0
          • E
            ericab
            last edited by

            ahh ok,
            everything looks fine

            do this:

            1. re-enable the lan rule

            2. go to FIREWALL –> NAT --> OUTBOUND

            3. select "Manual Outbound NAT rule generation" and click save

            your set.

            1 Reply Last reply Reply Quote 0
            • R
              rwijbenga
              last edited by

              I had already Manual Outbound NAT Rule Generation turned on…

              So I turned it off, restarted. And I did your steps again, restarted. Still no luck, I can't even ping to the outside, when I turn the vyprvpn firewall rule off I have internet back again.

              Any other idea's? Could there be something wrong wtih my pfsense instalation itself? Never had any problems before...

              Thnx again for your time.

              1 Reply Last reply Reply Quote 0
              • E
                ericab
                last edited by

                I also created a rule under the openvpn client that connects to vypr vpn to allow all traffic…

                this possibly ? ```
                redirect-gateway def1

                if you do not have this, please add it to Advanced Configuration, under the vpn client. disable & restart the client.

                1 Reply Last reply Reply Quote 0
                • R
                  rwijbenga
                  last edited by

                  Added your line to the advanced configuration of the vyprvpn clent..

                  But no luck, still not working.

                  I think I am going to setup a new PFsense installation on a different drive, I want to test if it then works..

                  1 Reply Last reply Reply Quote 0
                  • O
                    obstler
                    last edited by

                    @rwijbenga:

                    I have a working openvpn client in Pfsense to vyprvpn, it took me a while to get that working but now it is. :)

                    Remco,

                    Could you provide some details what exactly you did to configure vyprvpn? I'm trying to set it up and always fail at basically the same point:

                    When I set peer to peer shared key as server mode openvpn complains about the usage of auth-user-pass setting of the advanced field. when I set server mode to ssl/tls I can set the CA key provided by vyprvpn, but I have no client key… so openvpn fails at that point. how did you get a client certificate?

                    thanks.

                    1 Reply Last reply Reply Quote 0
                    • R
                      rwijbenga
                      last edited by

                      Hi,

                      I will try to make a tutorial tonight, I don't have enough time now.

                      Remco

                      1 Reply Last reply Reply Quote 0
                      • O
                        obstler
                        last edited by

                        any further info? i can't wait to get it working but I'm stuck without your help ;)

                        1 Reply Last reply Reply Quote 0
                        • C
                          chhaggerty
                          last edited by

                          @obstler:

                          any further info? i can't wait to get it working but I'm stuck without your help ;)

                          Found the tutorial here,
                          http://forum.pfsense.org/index.php/topic,35292.0.html

                          and here,
                          http://forum.pfsense.org/index.php/topic,29944.0.html

                          Working great, thanks.

                          1 Reply Last reply Reply Quote 0
                          • R
                            rwijbenga
                            last edited by

                            I have started a tutorial topic:

                            http://forum.pfsense.org/index.php/topic,35292.0.html

                            1 Reply Last reply Reply Quote 0
                            • First post
                              Last post
                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.