Solved: Routing some traffic over the OpenVPN Gateway



  • Hi!
    PFSense as a client is connecting to an OVPN Server, Interface is configured, Gateway is up and online (Pinging 192.168.1.1), Firewall Rule in LAN is set up for an Alias that includes an IP and in that rule the Gateway of the openvpn Interface is selected.
    Pinging from the interface in the pfs gui works and packet capture shows the packets:
    08:27:39.392069 IP 10.8.0.14 > 192.168.1.1: ICMP echo request, id 10465, seq 19450, length 8
    08:27:39.447980 IP 192.168.1.1 > 10.8.0.14: ICMP echo reply, id 10465, seq 19450, length 8

    IPs
    192.168.1.1  Remote GW
    192.168.1.3  Remote OpenVPN Server
    10.8.0.0        Remote OpenVPN Server IP Subnet
    10.8.0.14      Local OpenVPN Client IP
    10.10.69.122  Local IP of LAN Client to use the OpenVPN GW

    When using the client, I see packets with packet capture going through the interface but nothing returning. My guess is that I am missing a route our rule, but I don't know where. The remote GW, the OVPN Server, the PFS???

    Thank you for your help!



  • I figured it out.
    It was the Manual Outbound NAT rule generation rules that had to be configured. I used this guide: https://doc.pfsense.org/index.php/Routing_internet_traffic_through_a_site-to-site_OpenVPN-connection_in_PfSense_2.1
    But instead of using the WAN interface I had to use the vpn interface which I created from the Openvpn Client connection.
    Good Luck!