OpenVPN + dynamic IP



  • Hi All,

    I am newbie with pfSense. My condition is small network.
    I want to use pfSense with OpenVPN to link main office and 2 branch.
    At main office,
    pfSense with 1 lan (192.168.10.0/24), 1 wan (fix IP address) and
    2 servers behide pfSense.
    At branch 1,
    pfSense with 1 lan (192.168.11.0/24), 1 wan (192.168.1.2)
    connect to Linksys RV042 Loadbalance Router (192.168.1.1) for 2 line of dynamic adsl.
    In lan, I have 10 windows client to access 2 server at main office through OpenVPN.
    At branch 2,
    pfSense with 1 lan (192.168.12.0/24), 1 wan (192.168.1.2)
    connect to Linksys RV042 Loadbalance Router (192.168.1.1) for 2 line of dynamic adsl.
    In lan, I have 5 windows client to access 2 server at main office through OpenVPN.

    I have simple question ?.  ??? ???
    1. Is it possible to setup [OpenVPN + Loadbalance + Dynamic IP] from branch to main office ?.
    2. What is best way for loadbalance for OpenVPN between loadbalance by pfSense or by hardware?
    3. For loadbalance by pfSense, How to use 1 nic with multiple adsl modem ?.

    Any suggestion welcome,  :D
    Sompong



  • 1: I suppose it's possible. If one of the connections goes down your other balancer will put the attempt to reestablish the connection just on the second link.

    2: I'm not sure what you're trying to ask.
    Do you mean if it's better to let theRV042 do the loadbalancing or pfSense?
    If you want failover for OpenVPN i think it's better to let the RV042 do the loadbalancing the job.
    I dont think you can create failover-pools for pfSense itself, since pfSense uses outbound only its WAN for services running on it.

    3: search the multi-WAN forum. There are a few threads about this topic.

    On thing i see is that you have on your off-sites the same IP-ranges.
    I wouldnt do that.



  • Thanks for reply, GruensFroeschli

    @GruensFroeschli:

    1: I suppose it's possible. If one of the connections goes down your other balancer will put the attempt to reestablish the connection just on the second link.

    2: I'm not sure what you're trying to ask.
    Do you mean if it's better to let theRV042 do the loadbalancing or pfSense?
    If you want failover for OpenVPN i think it's better to let the RV042 do the loadbalancing the job.
    I dont think you can create failover-pools for pfSense itself, since pfSense uses outbound only its WAN for services running on it.

    I need site-to-site OpenVPN Loadbanace not fail over. :)
    [pfSense Box]-WAN-192.168.1.2< –--->192.168.1.1-LAN- [RV042 Loadbalance Router]-WAN1-[IP by ISP]–---Modem1--->
    [ OpenVPN  ]                                                              [                                  ]-WAN2-[IP by ISP]–---Modem2--->

    Sompong


Log in to reply