Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Port Forwarding OVER open-VPN

    Scheduled Pinned Locked Moved NAT
    4 Posts 2 Posters 740 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      turbogizzmo
      last edited by

      I have a local office with a block of static IPs and then another site hosting a few servers.

      What I would like is to leverage the local public IP to access and have this port forward/Route back to the servers at the other location.

      Public IPs <–--Local site---> OpenVPN 10.0.8.1 <------> OpenVPN 10.0.8.2 <----Remote site ---> Web Servers

      I've tried various attempts at port forwarding from the local site to the remote OpenVPN IP and various other changes with no success . Thought I better ask before I break something.

      Thanks!

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        It can be done.  I have done it on the bench.  First step is assigning interfaces to your OpenVPN instances.  You have to do the one where NAT occurs but you might as well do both.

        Have you done that?

        https://forum.pfsense.org/index.php?topic=82732.msg453269#msg453269

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • T
          turbogizzmo
          last edited by

          You sir are the man!

          I drove onsite just to be safe while making the changes and it looks like its working great!

          They were stretching the same network subnet across the OpenVPN before and didn't require the extra work but there were weird IP drops happening so I rebuilt one side with a different subnet and followed your thread and have it back up and working with no drops.

          1 Reply Last reply Reply Quote 0
          • DerelictD
            Derelict LAYER 8 Netgate
            last edited by

            Glad it worked for you.

            Chattanooga, Tennessee, USA
            A comprehensive network diagram is worth 10,000 words and 15 conference calls.
            DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
            Do Not Chat For Help! NO_WAN_EGRESS(TM)

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.