Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Problems with openVPN, I can't do pings with computers in the LAN

    Scheduled Pinned Locked Moved OpenVPN
    5 Posts 3 Posters 1.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      itssnppfsense
      last edited by

      Hello!

      I have a problem when i configure openVPN,  I can't do pings with computers in the LAN:

      I made some configurations of  openVPN and I used this article : http://www.3ops.com/implementacion-de-vpn-cliente-servidor-con-openvpn-y-pfsense/
      When I made the conection with one computer that had internet conection, that gave me this IP: 10.10.0.6, and I saw in the pfsense status the conection of openVPN

      this is my configuration for the tunel:

      And my rule's configuration in the firewall:


      i hope that you can help me!!
      thanks!!

      1 Reply Last reply Reply Quote 0
      • H
        heper
        last edited by

        i keep wondering why people keep asking questions in the wrong subsections of this forum, when there is a 'openvpn' section specially dedicated for it.
        @Derelict:thanks for moving it

        that said: your 'local network' in the second screenshot doesn't include the 10.10.10.x network you are trying to reach ; that is atleast one of your problems

        1 Reply Last reply Reply Quote 0
        • DerelictD
          Derelict LAYER 8 Netgate
          last edited by

          And the tunnel network is 10.10.0.0**/20** which includes 10.10.10.8 so I'm not sure what you're actually trying to do. The tunnel network needs to be distinct from any other networks on the firewall.

          Pings, etc, to other tunnel network addresses can be hit and miss because those addresses are not tied to actual interfaces on the firewall and there might or might not be any IP stack to respond depending on how you're doing it and the context.

          And the client computer is on 192.168.1.0 which is listed as the local network in the server config.

          No idea what you're actually trying to do.

          Chattanooga, Tennessee, USA
          A comprehensive network diagram is worth 10,000 words and 15 conference calls.
          DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
          Do Not Chat For Help! NO_WAN_EGRESS(TM)

          1 Reply Last reply Reply Quote 0
          • I
            itssnppfsense
            last edited by

            hi guys!

            Derelict thanks moving my comment…

            Well, I'm trying to get my local network from the outside to access my pfsense server (10.10.10.8) and other servers (ex: 10.10.10.5), are within the 10.10.0.0/20 subnet.

            1 Reply Last reply Reply Quote 0
            • DerelictD
              Derelict LAYER 8 Netgate
              last edited by

              Use something outside that subnet for the tunnel network and put 10.10.0.0/16 in the Local Networks on the server.

              Chattanooga, Tennessee, USA
              A comprehensive network diagram is worth 10,000 words and 15 conference calls.
              DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
              Do Not Chat For Help! NO_WAN_EGRESS(TM)

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.