openvpn shall use local network
-
let us not discuss sense or nonsense, in my case there is a purpose and I am just in hope that we can find a solution without offtopic discussions.
Layer 2 is not an option, i need to have layer 3
please forget wifi, we are only talking about cellphone internet via vpn.
is there no way like bridging vpn network to 192.168.0.* network?
adding another vpn client in 192.168.0.* network?come on guys you are the experts, cant be that there is no way for doing that.
-
I am able to see everything in my network from the vpn phone, but not the other way round?
If you can see all your LAN clients with VPN on then it's not directing all traffic out the VPN. Is your wifi on the same LAN or is it on a different subnet? If same LAN then pfSense is not involved at all.
-
@KOM said in openvpn shall use local network:
I am able to see everything in my network from the vpn phone, but not the other way round?
If you can see all your LAN clients with VPN on then it's not directing all traffic out the VPN. Is your wifi on the same LAN or is it on a different subnet? If same LAN then pfSense is not involved at all.
it is not about out rather then in.
phone connects via cell internet via vpn to www.mydoinain.org
this redirects it to openvpn servers ip address, goes in via open port in pfsense, goes to pfsense dns server, goes to plex server.so I am able to see all clients and use the tunnel for ALL communication. inside 192.168.0.* network and www
but from 192.168.0.* network I cannot see openvpn client.
therefore I assume it is something like a virtual network or a rule which block it or just missing routing. -
@KOM said in openvpn shall use local network:
I am able to see everything in my network from the vpn phone, but not the other way round?
If you can see all your LAN clients with VPN on then it's not directing all traffic out the VPN. Is your wifi on the same LAN or is it on a different subnet? If same LAN then pfSense is not involved at all.
please forget WIFI, there is no wifi, I am only connected vi cellphone internet
-
OK, all of that info would have been good to know from your very first post.
So your VPN is in to yourself. What rules do you have on your OpenVPN interface in pfSense? Just the default one that gets created by the OpenVPN Remote Access wizard? Any other packages running like SNort or Suricata? Anything showing as blocked in your firewall log while testing? Are you running a web proxy like squid?
-
god damn.... found the problem.
there was a rule missplaced
it is now working fine!
-
You're welcome.
-
Your using DLNA, which is how plex finds player from your vpn connection from your phone via your LTE connection... Sorry but no I don't think so..
So your you are either doing something else other than what I Linked to, or your mistaken.. Did you setup pimd or the igmp proxy in pfsense for your vpn connection? Is your iphone rooted and you can use tap mode, etc.
-
@johnpoz
problem is solved.i excluded some ip addresses in the rules table. so in case someone hacks in, the impact would be low.
of course the ip address of the pc was in that rule set xD
my bad, but KOM brought me to that point to recheck the rules.
by the way, thanks for that buddyiphone is not rooted or else, everything is just pure gui configuration without any special modification
-
OK, he's fixed up. Let's call it a day.
