Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Can't access remote network through OpenVPN tunnel

    Scheduled Pinned Locked Moved OpenVPN
    13 Posts 3 Posters 1.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      B_Hayward
      last edited by

      Attached is a snapshot of the Firewall Rules i have setup on the OpenVPN interface

      ![Firewall Rules.JPG](/public/imported_attachments/1/Firewall Rules.JPG)
      ![Firewall Rules.JPG_thumb](/public/imported_attachments/1/Firewall Rules.JPG_thumb)

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        Check the local firewall on the host you're trying to ping then.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • B
          B_Hayward
          last edited by

          And there it is…the OBVIOUS  :-.  I'm so happy that this post will forever live in the ether documenting my childish mistake.

          I disabled my firewall and everything works as advertised.  Thank you for the help.

          BTW, I really appreciate the network diagram you link to in your signature.  It really helps to decipher networking terms you may use when troubleshooting peoples problems.  For instance, when you mentioned host I initially thought you were referring to the server where OpenVPN was running...but looking at your diagram I immediately know what you mean when you say host.  Would you mind if I also use it in my signature?

          1 Reply Last reply Reply Quote 0
          • DerelictD
            Derelict LAYER 8 Netgate
            last edited by

            No.  It's MINE!

            I guess if you want.

            You would be AMAZED how unobvious local "software" firewalls are.  Everyone beats their head against one occasionally.  It still happens to me when I take my laptop to a hotel, enable the firewall, then try to use it for testing some days later.  It's something you just get used to checking when you should be able to ping a host and can't.  (And they're worth the trouble, to be sure).

            I try to use the terminology and formatting found here:

            https://doc.pfsense.org/index.php?title=Wiki_Style_Guide

            Chattanooga, Tennessee, USA
            A comprehensive network diagram is worth 10,000 words and 15 conference calls.
            DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
            Do Not Chat For Help! NO_WAN_EGRESS(TM)

            1 Reply Last reply Reply Quote 0
            • W
              wasteoid
              last edited by

              I'm having the same problem.

              Firewall is not running on my mac and I have the same IP any any rule on my openvpn rule tab.

              1 Reply Last reply Reply Quote 0
              • DerelictD
                Derelict LAYER 8 Netgate
                last edited by

                What rule?

                Chattanooga, Tennessee, USA
                A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                Do Not Chat For Help! NO_WAN_EGRESS(TM)

                1 Reply Last reply Reply Quote 0
                • W
                  wasteoid
                  last edited by

                  The same Hayward posted above on his Firewall>Rules>OpenVPN Passing IPv4 any any source any port any destination any port.

                  I can ping the Remote host from my firewall when openvpn shows that it is up. I try to ping Google public DNS and that fails from the firewall.

                  1 Reply Last reply Reply Quote 0
                  • DerelictD
                    Derelict LAYER 8 Netgate
                    last edited by

                    I try to ping Google public DNS and that fails from the firewall.

                    What does that have to do with OpenVPN.  If you're having a problem you should probably start another thread.

                    Chattanooga, Tennessee, USA
                    A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                    DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                    Do Not Chat For Help! NO_WAN_EGRESS(TM)

                    1 Reply Last reply Reply Quote 0
                    • W
                      wasteoid
                      last edited by

                      I'm describing the failures that I'm seeing because I can't access a network external to mine, kind of like what this thread is called.

                      1 Reply Last reply Reply Quote 0
                      • DerelictD
                        Derelict LAYER 8 Netgate
                        last edited by

                        Good luck.

                        Chattanooga, Tennessee, USA
                        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                        Do Not Chat For Help! NO_WAN_EGRESS(TM)

                        1 Reply Last reply Reply Quote 0
                        • W
                          wasteoid
                          last edited by

                          I see what you're saying. Thanks.

                          1 Reply Last reply Reply Quote 0
                          • First post
                            Last post
                          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.