Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Why can't i access my pfsense box over OpenVpn

    Scheduled Pinned Locked Moved General pfSense Questions
    27 Posts 4 Posters 3.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • O
      OpenWifi @OpenWifi
      last edited by

      @OpenWifi this right now

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        Ok, so nothing logged on the server end and that's expected since the firewall rule shows no passed traffic.

        Looks like an Android issue I would guess. Can you test from a desktop client to confirm that?

        Steve

        O 1 Reply Last reply Reply Quote 0
        • O
          OpenWifi @stephenw10
          last edited by

          @stephenw10 IMG_20190405_225542_329.jpg
          That is on the desktop

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by

            Ok so failing the same way from the desktop client. I assume you still see no traffic on the WAN OpenVPN rule and nothing in the server logs to show 'peer initiating'?

            So something is blocking that traffic before it gets to the pfSense WAN. Or it's being sent to the wrong IP/port by the client.

            You could run a packet capture on WAN and filter by UDP port 1194 to be sure.

            How is the WAN connected? What sort of connection is it?

            Steve

            1 Reply Last reply Reply Quote 0
            • stephenw10S
              stephenw10 Netgate Administrator
              last edited by

              Oh, wait the OpenVPN server appears to be listening on 192.168.1.2. Is that behind another router? Have you setup port forwards in that router?

              Steve

              O 2 Replies Last reply Reply Quote 0
              • chpalmerC
                chpalmer
                last edited by

                Double NAT is my guess as well..

                Triggering snowflakes one by one..
                Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

                1 Reply Last reply Reply Quote 0
                • O
                  OpenWifi @stephenw10
                  last edited by

                  @stephenw10 yes it is behind the main router that my isp provided

                  1 Reply Last reply Reply Quote 0
                  • O
                    OpenWifi @stephenw10
                    last edited by

                    @stephenw10 No! I havent setup any port forwards should i set it on the main router or the pfsense box

                    chpalmerC 1 Reply Last reply Reply Quote 0
                    • chpalmerC
                      chpalmer @OpenWifi
                      last edited by

                      @OpenWifi said in Why can't i access my pfsense box over OpenVpn:

                      @stephenw10 No! I havent setup any port forwards should i set it on the main router or the pfsense box

                      Truthfully it would be best for you to set your internet connection device to bridge mode and let the pfsense get the public address on its WAN.

                      But yes otherwise anything that you want to make it through would have to be forwarded first to the pfsense box from the first router.

                      Triggering snowflakes one by one..
                      Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

                      O 3 Replies Last reply Reply Quote 0
                      • O
                        OpenWifi @chpalmer
                        last edited by stephenw10

                        @chpalmer thank you. So i port forward 1194 to pfsense from the router.Thanks. And would bridging affect a person using the first router as wifi, because i have a laptop using Wifi on the first router

                        1 Reply Last reply Reply Quote 0
                        • O
                          OpenWifi @chpalmer
                          last edited by

                          @chpalmer hello guys should i port forward on my router or on my pfsense box

                          1 Reply Last reply Reply Quote 0
                          • O
                            OpenWifi @chpalmer
                            last edited by

                            @chpalmer Thank you Guys,it worked.i portforwarded and it worked!!!!.Thanks alot

                            1 Reply Last reply Reply Quote 0
                            • stephenw10S
                              stephenw10 Netgate Administrator
                              last edited by

                              Yes, setting the other router to whatever bridge mode it might have available would affect anything using it directly.

                              Really you should look at using pfSense instead of that router and having a separate wireless access point behind it. You may be able to use the ISP router for that purpose:
                              https://docs.netgate.com/pfsense/en/latest/wireless/use-an-existing-wireless-router-with-pfsense.html

                              It depends what sort of connection you have and whether it has a separate modem.

                              Steve

                              1 Reply Last reply Reply Quote 0
                              • First post
                                Last post
                              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.