Unable to connect to Company VPN with client machine behind pfSense
-
@nogbadthebad
Yes my LAN subnet is 10.0.0.0/8. And I have had other VPN clients work fine which use a sub-divided 10.0.0.0/8 range (cisco for example) and it still works just fine for my wife.So I did get the routes using netstat on my MBP and the VPN client's default gateway is the first route for all traffic. Unless I am missing something that default GW route should override all other.
dwfa
-
I tried via wired and same issue.
-
When you connect via the hotspot what up address do you get?
Maybe some of the other VPN connections you use tunnel everything over the the VPN and Pulse is split tunnel.
Regardless your LAN subnet is way too large.
-
Yes if I am given a non 10 address it seems to work. I have never had this issue before. For me to change my network topology around will be a pain. There is a good reason I picked 10.
I found a work around 'til I can work with my companies IT team to fix this - or I live with the work around.
Thx to all for your support really appreciate it.
dwfa
-
@dwfa 10 is fine just don’t assign the whole 10.0.0.0/8 to a single interface.
-
@dwfa said in Unable to connect to Company VPN with client machine behind pfSense:
I found a work around 'til I can work with my companies IT team to fix this
Do you really beleave, they would change the campanies local subnet, because one of the employees who wants to vpn in uses a /8 subnet at home?
I don't think so.You're using 94% of the private network address space.
Why? Do you have 16 million network devices at home?If your devices uses DHCP, changing the mask would not be a bid deal.
-
@viragomann
Valid point, but this used to work with this company when I was there sometime ago. So they changed something on their side a nothing has changed on my side. If it is an easy fix I do not see why a change could not be done. -
@dwfa
Maybe there is a sort of NAT possible in Pulse Secure VPN and they are willing to configure it for your. Don't know.
Good luck! -
@viragomann Pulse isn’t very configurable TBH.
They brought the rights to Junipers VPN solutions.
-
@nogbadthebad
I see. I don't know it.