OpenVpn MultiLan
-
Hopefully I've put this in the correct spot.
I am using pfsense to separate networks.
I have users connecting to the wan interface and nating out to one of multiple other networks.
Everything works great until I add the fifth network interface.
No mater what I do I cannot get anything to route to any interface.
When I remove the interface everything goes back to normal.
Sometimes I have to reconfig the whole thing, I've gotten pretty good at it now.
I look at the logs and nothing jumps out.I'm using the latest version, installed yesterday.
–edit--
Diagram attached.
-
Getting down to the simplest level
If I have 5 adapters on the system I can't ping any addresses on the LAN sideWAN is ok, I can connect to it.
Connected directly to the console.
LAN I can ping the nics address, but no further
Firewall is completely openThe system is on VMware, 5 adapters added to the guest.
In pf only 2 interfaces are enabled. -
It was a complete Noob moment
Just to go over how I got there and what I did to make it right.
I added 2 network adapters to the guest in esxi
Configured and got working.
Added a 3rd, configured and got working
Added a 4th, configured and got working
Added a 5th, configured and broke the system.What I didn't realize was that the adapters to the OS somehow changed. So adapter 1 was no longer vmx1
The noob moment was that I would have caught the issue had I looked at the mac address.My end config has 1 wan and 7 lan adpaters.
3 of the lan have virtual ip addresses attached.
This is all interoffice so firewall rules are completely open.
Setting up NAT outbound was fairly easy, need to think a little harder about the virtual ips.Going forward I need to eliminate adapters and use Vlans, but that's a story for another day