Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Modem Access with OpenVPN

    Scheduled Pinned Locked Moved NAT
    4 Posts 3 Posters 805 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      Mr.Xirtam
      last edited by

      Hello everyone. I have recently setup my pfSense firewall and got it configured the way I like, mostly. I have the WAN interface (configured as PPPoE), the LAN interface, the physical WAN interface, and finally an OpenVPN interface (Client). The openvpn is strictly used for only one IP address, all the rest of the internet traffic is supposed to go out the normal WAN - PPPoE.

      I have followed the guide here: https://doc.pfsense.org/index.php/Accessing_modem_from_inside_firewall

      Before I setup the Openvpn client, this worked and I was able to access the web GUI of the modem. Once I added the OpenVPN interface and got that connected, it no longer works. Is there an additional NAT rule that I need because of the OpenVPN?

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        If I had to guess, it is not OpenVPN that's the problem but the introduction of policy routing.  See if this doesn't have the information you need to fix it:

        https://doc.pfsense.org/index.php/Bypassing_Policy_Routing

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • johnpozJ
          johnpoz LAYER 8 Global Moderator
          last edited by

          If your routing your client out your vpn, how do you expect it to get to your modem?  Put a rule in front of your vpn rule that allows you to connect to your wan device.

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 24.11 | Lab VMs 2.8, 24.11

          1 Reply Last reply Reply Quote 0
          • M
            Mr.Xirtam
            last edited by

            @Derelict:

            If I had to guess, it is not OpenVPN that's the problem but the introduction of policy routing.  See if this doesn't have the information you need to fix it:

            https://doc.pfsense.org/index.php/Bypassing_Policy_Routing

            This was exactly it, and after getting it setup, makes total sense. Thanks for information. Much easier than I thought it would be.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.