[SOLVED] OPENVPN TROUBLE
-
Hi, i need help please i have connected my laptop to my LAN net with pfsense OpenVPN mode roadwarrior this work right but i need access from PC LAN to my laptop and i can't . How i can connect? this is part of my configuration:
OpenVPN Servers
Protocol/Port Tunnel Network Crypto Descripcion
UDP / 1194 172.16.1.0/28 Crypto: AES-256-CBC/SHA256 D-H Params: 2048 bits SLPRW VPN (tun)Server Mode=Remote Access(SSL/TLS + User Auth)
Interface=WAN
DH Parameter Length=2048
Enable NCP (x)
NCP Algorithms=AES256-GSM / AES128-GSM
IPv4 Tunnel Network=172.16.1.0/28
Redirect Gateway (x)
Inter-client communication (x)
DNS Default Domain (x)
DNS Default Domain=localnet.lo
DNS Server 1=192.168.10.1Maybe can help. Thanks.
-
If the VPN connection is up and traffic can flow in one direction, but you get no access in the other one, the block will be caused by a firewall. Presumably by the clients firewall.
So you would have to open up the clients firewall to allow access from servers LAN.You may also do some tricks with NAT and VPN gateway on the server, so that the client will trust the access, but that's a little bit dirty.
-
Thanks for you response viragomann, i will see my firewall on my router.
-
Hi viragomann, i see that my firewall is stopped, how i can route the connection from my LAN to my laptop?
-
Is the pfSsense running the OpenVPN server the default gateway in the LAN?
If it is you should be able to access the Laptop by its VPN IP, presupposed all firewalls on the route permit it. -
Is the pfSsense running the OpenVPN server the default gateway in the LAN?
Yes, pfsense is my openvpn and default gateway
If it is you should be able to access the Laptop by its VPN IP, presupposed all firewalls on the route permit it.
I try make ping to the ip vpn on my laptop but i can't. How i make a routing?
-
Is it a Windows Laptop?
-
Yep, Laptop with windows 10
-
Windows out of the box would block ping from IP that is not on the local network… You need to adjust the windows firewall to allow access from your VPN clients.
-
Thanks viragomann & johnpoz, i solved this trouble, only need install the agent openvpn on my desktop LAN and i can access to the laptop. Thanks for all.