Seperating VoIP traffic not to go over OpenVPN



  • Hi everyone. Here is my issue that some of you probably will think easy to solve. A little background info on myself first.
    I'm a big VoIP guy but I just started to table into the routing and FW portion so I'm a little bit green on that side.

    That said, I'm really loving this pfSense build I did on an old Optiplex and added the Snort package and created an OpenVPN to secure my network traffic.

    The issue I'm having is that all traffic coming in/out is encrypted and I'm hosting my own VoIP PBX. Most of the time it works but sometimes I'm having issues with the VoIP connecting to my SIP Trunk.

    How would I separate the traffic so that VoIP goes out the WAN and not out the PIA interface?

    I basically followed the instructions on how to setup PIA on PfSense. So mostly everything is basically the same as the instructions
    https://forum.pfsense.org/index.php?topic=76015.0

    Any help or insight on how to do this would be greatly appreciated.



  • I think you should go to Firewall>Aliases>IP and create an alias with all the IP addresses that must not use the VPN tunnel.
    Then go to Firewall>Rules>LAN and create your own pass rule using the previous alias as Source and setting up WANGW as the gateway in the Advanced Options.



  • Thanks, I'll try that and see if it works.


Log in to reply