• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

[RESOLVED]Access webGUI using DDNS address

Scheduled Pinned Locked Moved OpenVPN
3 Posts 2 Posters 1.3k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • ?
    A Former User
    last edited by Feb 3, 2017, 9:45 AM May 30, 2016, 7:35 AM

    Hello,

    I'm trying to access my webGUI using my DDNS address thru my OpenVPN connection; which I know I can do with a firewall rule. I'm having difficulties with (if it is a simple firewall rule) accessing the webGUI thru OpenVPN using my DDNS address, and possibly my hostname+domain name. I set up a basic OpenVPN setup and with no specific guide being followed. The reason i'm doing this is because (even though my local network ip address isn't common) I want a way into my home network while in the event i'm in a place that uses the same address space as my home network; while i'm trying to vpn into my home network.

    1 Reply Last reply Reply Quote 0
    • D
      Derelict LAYER 8 Netgate
      last edited by May 30, 2016, 8:17 AM May 30, 2016, 8:08 AM

      So has this happened or is this a what if?

      I don't know of any way to include a dynamic address in an OpenVPN route.

      If you tell your OpenVPN server to

      Force all client generated traffic through the tunnel.

      then you should be able to access your pfSense device at its WAN address, firewall rules permitting.

      If you have a random local network address scheme, the chances of a collision are pretty slim. If you're on 192.168.1.0/24, your chances increase more than significantly.

      You could also try adding an IP alias VIP to Localhost on an IP network distinct from your LAN and include that address/network in the Local Networks of the OpenVPN Server. In the unlikely event you experience a subnet collision with LAN, you could connect to the localhost VIP instead. Less heavy-handed than redirecting all traffic through the tunnel if that's not what you want.

      Chattanooga, Tennessee, USA
      A comprehensive network diagram is worth 10,000 words and 15 conference calls.
      DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
      Do Not Chat For Help! NO_WAN_EGRESS(TM)

      1 Reply Last reply Reply Quote 0
      • ?
        A Former User
        last edited by Jun 4, 2016, 3:57 AM

        @Derelict:

        You could also try adding an IP alias VIP to Localhost on an IP network distinct from your LAN and include that address/network in the Local Networks of the OpenVPN Server. In the unlikely event you experience a subnet collision with LAN, you could connect to the localhost VIP instead. Less heavy-handed than redirecting all traffic through the tunnel if that's not what you want.

        Thank you for the reply/suggestions,

        Yes this situation has previously happened; I was told I could access my WAN DDNS link from anywhere so long as I make the correct rules in my firewall (for my VPN connections exclusively of course). I tried the VIP as such.

        1.Selected IP Alias for the type
        2. For interface I selected Localhost
        3. Address type only allowed me to use Single address
        4. I input my OpenVPN address for the Address section
        5. Left Virtual Ip Password, VHID Group, Advertising frequency, and Skew blank/at defaults

        My connections can now access my hostname + domain link url to my pfSense box (previously wasn't able to); but I cannot put my DDNS link into the VIP, or access it still from its url. Can you guide me on your suggestion?

        1 Reply Last reply Reply Quote 0
        3 out of 3
        • First post
          3/3
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
          This community forum collects and processes your personal information.
          consent.not_received