Can't login to pfsense via OpenVPN (and other weird issues)
-
I'm having a weird issue with openvpn. When I'm connected via VPN, I can navigate to the login interface of pfsense (192.168.1.1), however after I press "sign in", I'm back at the login page (no errors, no nothing).
But signing in from the VPN-gateway-IP (10.0.8.1) works perfectly fine.However, there is nothing in the logs about anything being blocked by the pfsense firewall.
Internet works fine, I can still reach the LAN-devices (hostname resolution works).
Other weird issues, which I believe are related:
- I cannot ping my pfsense's WAN IP. Again, no firewall-logs. It doesn't even show up on pfTop
- pinging pfhostname.mydom works, but I can't open it in the browser. However, I can open up pfhostname (no domain). Even after I setup a host-override for pfhostname.mydom in unbind. But lanhost.mydom still works perfectly fine
I normally wouldn't mind these weird issues. I could just login from 10.0.8.1 instead of 192.168.1.1 - however, since I use my WAN-IP for my HAproxy, I can't reach any of my internal services anymore (unless I navigate to them directly)
I've been trying this on a Windows Machine (with block-outside-dns). But on Android, I have the same issues. However, when I turn on "Private DNS: automatic" in the Android Settings, everything works fine. Not quite sure what this setting does.
(I do have NAT-reflection turned on. Not sure if this is relevant)
-
I want to solve my own issue.
After hours and hours of testing things out, the problem was rather simple. I just had to go to the
OpenVPN Server settings -> Tunnel Settings -> IPv4 Local network(s)
and just add my WAN network to the list.
I guess that's why it never showed up in the logs. Because it wasn't ever blocked by the firewall. The VPN-users just never had any access to it
I still can't login via my LAN-net IP. Not sure why that doesn't work, still. but it works via HAproxy. So maybe it's an http/https issue