Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    VPN no pasa a mi lan

    Español
    2
    14
    876
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • chpalmerC
      chpalmer
      last edited by

      @g_cury said in VPN no pasa a mi lan:

      Ok. I misread. can you show your openvpn firewall rules? Also what do you have for the IP addresses on this page- ?

      vpnsetting.jpg

      Triggering snowflakes one by one..
      Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

      G 1 Reply Last reply Reply Quote 0
      • G
        g_cury @chpalmer
        last edited by

        @chpalmer, gracias por interesarte en mi problema. Te adjunto las reglas de firewall.
        Tengo 10.34.87.0/ para la red del tunel y 172.16.0.0/16 la lan de mi trabajo
        regla_openvpn.jpg regla.jpg

        1 Reply Last reply Reply Quote 0
        • chpalmerC
          chpalmer
          last edited by chpalmer

          @g_cury said in VPN no pasa a mi lan:

          I see a few things that you should fix. One- The WAN rule that you have circled is dangerous in that it allows the whole world access to your network. You should disable it right away.

          Triggering snowflakes one by one..
          Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

          G 1 Reply Last reply Reply Quote 0
          • chpalmerC
            chpalmer
            last edited by

            my work 172.16.0.0/16,

            Is your home network 172.16.64.92/16?

            These two networks overlap and will not work together.

            Either make your networks smaller such as 170.16.0.0/24 and 172.16.64.0/24 or chose another subnet that does not overlap with your work network.

            http://www.subnet-calculator.com/

            Also- You only need the first rule on your openvpn firewall rule page. The other three are redundant.

            Triggering snowflakes one by one..
            Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

            1 Reply Last reply Reply Quote 0
            • G
              g_cury @chpalmer
              last edited by

              @chpalmer te agradezco por tu consejo de seguridad, el tema es que estoy intentando poder comunicarme con la lan de la empresa, una vez que lo logre voy a empezar a acotar los permisos. Por eso te agradecería si puedes orientarme en saber que es lo que no me deja pasar de la ip virtual del túnel a la ip de la lan

              1 Reply Last reply Reply Quote 0
              • chpalmerC
                chpalmer
                last edited by

                @g_cury said in VPN no pasa a mi lan:

                Is this a road warrior type setup or a site to site setup?

                Can you post a screenshot of your VPN setup page? Hide the server side address and any "secret key"..

                Triggering snowflakes one by one..
                Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

                G 1 Reply Last reply Reply Quote 0
                • G
                  g_cury @chpalmer
                  last edited by

                  Deberia ser una vlan road warrior. Te paso todas las imagenes de mi configuracion vlan arreglando algunas cosas como me aconsejasteserver openvpn.jpg server openvpn_1.jpg server openvpn_2.jpg server openvpn_3.jpg server openvpn_4.jpg server openvpn_5.jpg server openvpn_6.jpg server openvpn_7.jpg server openvpn_8.jpg route print.jpg nat outbound.jpg rule lan.jpg rule openvpn.jpg rule wan.jpg

                  1 Reply Last reply Reply Quote 0
                  • chpalmerC
                    chpalmer
                    last edited by

                    @g_cury said in VPN no pasa a mi lan:

                    Ok.. that all looks good at first look. Just to verify.. are you checking from behind your LAN or are you checking from another location? I do not believe it will work with your client behind LAN but Id have to check here on my system..

                    Triggering snowflakes one by one..
                    Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

                    G 1 Reply Last reply Reply Quote 0
                    • G
                      g_cury @chpalmer
                      last edited by

                      @chpalmer, estoy conectandome desde casa al pfsense que se encuentra en mi trabajo

                      1 Reply Last reply Reply Quote 0
                      • chpalmerC
                        chpalmer
                        last edited by

                        Is the work primary firewall the pfsense box? Or is it behind another router?

                        Triggering snowflakes one by one..
                        Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

                        G 1 Reply Last reply Reply Quote 0
                        • G
                          g_cury @chpalmer
                          last edited by

                          @chpalmer no está detrás de un enrutador y el único firewall es el propio de la pc remota

                          1 Reply Last reply Reply Quote 0
                          • First post
                            Last post
                          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.