Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How to access pfSense LAN/OPT subnets from mobile devices?

    Scheduled Pinned Locked Moved IPsec
    10 Posts 3 Posters 2.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      pfcode
      last edited by

      Hi, All

      I have successfully setup my iPhone/iPad wirelessly connect to my pfSense box using IPSec VPN, no issue accessing the internet. However, my iphone/ipad can't access NAS on 192.168.1.0/24 (LAN) subnet or VOIP Webui on 192.168.2.0/24 (OPT) subnet behind pfSense router.

      The firewall rules for IPSec set to allow any source to any destination. Outbound rules for IPSec VIP (192.168.6.0/24) was set properly.

      What am I missing?  Thanks.

      Release: pfSense 2.4.3(amd64)
      M/B: Supermicro A1SRi-2558F
      HDD: Intel X25-M 160G
      RAM: 2x8Gb Kingston ECC ValueRAM
      AP: Netgear R7000 (XWRT), Unifi AC Pro

      1 Reply Last reply Reply Quote 0
      • K
        kapara
        last edited by

        What is the destination network for your VPN.  You can try setting it to 0.0.0.0/0

        Skype ID:  Marinhd

        1 Reply Last reply Reply Quote 0
        • P
          pfcode
          last edited by

          @kapara:

          What is the destination network for your VPN.  You can try setting it to 0.0.0.0/0

          It was LAN subnet, but changed to "network", 0.0.0.0/0,  didn't work and failed connecting to the internet.

          Release: pfSense 2.4.3(amd64)
          M/B: Supermicro A1SRi-2558F
          HDD: Intel X25-M 160G
          RAM: 2x8Gb Kingston ECC ValueRAM
          AP: Netgear R7000 (XWRT), Unifi AC Pro

          1 Reply Last reply Reply Quote 0
          • P
            pfcode
            last edited by

            My pfSense box is currently using DNS Resolver,  Does IPSec VPN work with DNS Resolver?

            Release: pfSense 2.4.3(amd64)
            M/B: Supermicro A1SRi-2558F
            HDD: Intel X25-M 160G
            RAM: 2x8Gb Kingston ECC ValueRAM
            AP: Netgear R7000 (XWRT), Unifi AC Pro

            1 Reply Last reply Reply Quote 0
            • K
              kapara
              last edited by

              are you accessing VPN to your device from a wifi connection or mobile?  If your phone is on a wifi that is also 192.168.1.0 then I think the phone will not pass the traffic across the VPN as it will see that subnet as a local subnet to the phone.  I never use 192.168.1.0 as it is sooo heavily used in most places.  I use 172.20.20.0. Or 10.20.x.xas these are uncommon.

              Skype ID:  Marinhd

              1 Reply Last reply Reply Quote 0
              • P
                pfcode
                last edited by

                @kapara:

                are you accessing VPN to your device from a wifi connection or mobile?  If your phone is on a wifi that is also 192.168.1.0 then I think the phone will not pass the traffic across the VPN as it will see that subnet as a local subnet to the phone.  I never use 192.168.1.0 as it is sooo heavily used in most places.  I use 172.20.20.0. Or 10.20.x.xas these are uncommon.

                My wifi was in a 192.168.111.0/24 range, while my pfSense LAN was in a 192.168.1.0/24 range, and OPT was in a 192.168.2.0/24 range. shouldn't be a problem, but iphone/ipad just can't access pfSense box 's LAN/OPT subnets. the IPSec VIP was in a 192.168.6.0/24 range.

                IPhone/iPad (192.168.111.aaa) ->Netgear R7000 router-> ISP Modem 1 –>Internet-->ISP Modem 2->pfSense (IPSec)-> NAS (192.168.1.xxx), VOIP (192.168.2.yyyy)

                Release: pfSense 2.4.3(amd64)
                M/B: Supermicro A1SRi-2558F
                HDD: Intel X25-M 160G
                RAM: 2x8Gb Kingston ECC ValueRAM
                AP: Netgear R7000 (XWRT), Unifi AC Pro

                1 Reply Last reply Reply Quote 0
                • K
                  kapara
                  last edited by

                  Is this a clean install or an upgrade?  What version are you running?

                  Skype ID:  Marinhd

                  1 Reply Last reply Reply Quote 0
                  • C
                    cmb
                    last edited by

                    Guessing your mobile P2 doesn't include those subnets, so the clients aren't sending that traffic over the VPN.

                    1 Reply Last reply Reply Quote 0
                    • P
                      pfcode
                      last edited by

                      @kapara:

                      Is this a clean install or an upgrade?  What version are you running?

                      Using 2.2.6, this was the first time to set up IPSec

                      Release: pfSense 2.4.3(amd64)
                      M/B: Supermicro A1SRi-2558F
                      HDD: Intel X25-M 160G
                      RAM: 2x8Gb Kingston ECC ValueRAM
                      AP: Netgear R7000 (XWRT), Unifi AC Pro

                      1 Reply Last reply Reply Quote 0
                      • P
                        pfcode
                        last edited by

                        Solved by adding multiple P2s, one for LAN, one for OPT.

                        Release: pfSense 2.4.3(amd64)
                        M/B: Supermicro A1SRi-2558F
                        HDD: Intel X25-M 160G
                        RAM: 2x8Gb Kingston ECC ValueRAM
                        AP: Netgear R7000 (XWRT), Unifi AC Pro

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.