Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    [Solved] openvpn cannot connect my lan network computer

    Scheduled Pinned Locked Moved OpenVPN
    7 Posts 3 Posters 1.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      Krishsns
      last edited by

      Hi,
      I have configured the openvpn sucessfully. It connects sucessfully, but cannot ping my lan network.
      My internal Network -172.168.0.0 / 24
      openvpn network - 192.168.143.0 /24

      note i can ping my pfsense firewall(172.168.0.254) from client computer. but cannot ping any other pc in my lan network.

      this is my routing table from client side

      1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator
        last edited by

        And more than likely your clients on lan software firewall says - who and the F is this trying to ping me from some network that is not my local network - F that guy, drop!!!  ;)

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        1 Reply Last reply Reply Quote 0
        • K
          Krishsns
          last edited by

          ;D Then what is the solution for this.

          1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator
            last edited by

            Allow your tunnel network on your software firewalls on your clients.. Or turn the firewalls off on the clients, etc. etc.

            Do you firewall between your clients on the same lan?  They are behind a firewall to the internet.  So unless you have hostile devices on your local network segment the actual use of software firewall on each and every client could be debated.

            I can tell you for sure I don't run software firewall on my lan machines.  I have pfsense firewalling between my network segments, and to and from the internet.  What would be the point of the software firewall other than extra overhead and logistics for me to manage every time I want machine A to talk to machine B, etc.

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.8, 24.11

            1 Reply Last reply Reply Quote 0
            • H
              heper
              last edited by

              also:
              172.168.0.0 isn't valid RFC1918 address space

              172.16.0.0 - 172.31.255.255  <== valid

              1 Reply Last reply Reply Quote 0
              • K
                Krishsns
                last edited by

                Thank you John It fixed. after turning windows firewall off.

                1 Reply Last reply Reply Quote 0
                • johnpozJ
                  johnpoz LAYER 8 Global Moderator
                  last edited by

                  Good catch on the 172.168 helper!!!  I missed that.

                  An intelligent man is sometimes forced to be drunk to spend time with his fools
                  If you get confused: Listen to the Music Play
                  Please don't Chat/PM me for help, unless mod related
                  SG-4860 24.11 | Lab VMs 2.8, 24.11

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.