Solved: Routing some traffic over the OpenVPN Gateway
-
Hi!
PFSense as a client is connecting to an OVPN Server, Interface is configured, Gateway is up and online (Pinging 192.168.1.1), Firewall Rule in LAN is set up for an Alias that includes an IP and in that rule the Gateway of the openvpn Interface is selected.
Pinging from the interface in the pfs gui works and packet capture shows the packets:
08:27:39.392069 IP 10.8.0.14 > 192.168.1.1: ICMP echo request, id 10465, seq 19450, length 8
08:27:39.447980 IP 192.168.1.1 > 10.8.0.14: ICMP echo reply, id 10465, seq 19450, length 8IPs
192.168.1.1 Remote GW
192.168.1.3 Remote OpenVPN Server
10.8.0.0 Remote OpenVPN Server IP Subnet
10.8.0.14 Local OpenVPN Client IP
10.10.69.122 Local IP of LAN Client to use the OpenVPN GWWhen using the client, I see packets with packet capture going through the interface but nothing returning. My guess is that I am missing a route our rule, but I don't know where. The remote GW, the OVPN Server, the PFS???
Thank you for your help!
-
I figured it out.
It was the Manual Outbound NAT rule generation rules that had to be configured. I used this guide: https://doc.pfsense.org/index.php/Routing_internet_traffic_through_a_site-to-site_OpenVPN-connection_in_PfSense_2.1
But instead of using the WAN interface I had to use the vpn interface which I created from the Openvpn Client connection.
Good Luck!