NAT between two internal networks
-
Hi all, I have two networks, connected over openvpn:
192.168.82.0/24 <–OVPN--> 192.168.85.0/24
Only the 192.168.82.0/24 (let's call it local) network is managed with pfSense, the remote 192.168.85.0/24 network has a computer running the openvpn client connected to the server running on pfSense.
I want clients on the local network to be able to access resources on the remote network, but not the other way round. However, I'm having trouble allowing local clients access to the remote network. The openvpn link is working fine, and I can ping clients on the remote network from within pfSense.
I've checked that routes to the remote network were (automatically) created on pfSense, and there are no conflicting routes on the local clients. pfSense is also acting as the default gateway for the local network.
Is there anything I'm missing to allow traffic to pass from the local network to the remote one?
-
Does the ping at pfSense work also if you change the source to LAN address?
Do the firewall rules at server side allow the access to the remote network?
-
Thanks for the answer!
I didn't get the chance to test pinging with the LAN address on pfSense, but the firewall rules on the server side were already configured to pass traffic from LAN to Remote.
However, I did solve the problem by realising I shouldn't fill in the "Remote IPv4 Network" field with the remote subnet in the openvpn configuration. Instead, I only need to have outbound NAT set up, and it started working!
Really appreciate your help anyways!