Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login
    Introducing Netgate Nexus: Multi-Instance Management at Your Fingertips.

    Allow incoming ports with VPN

    Scheduled Pinned Locked Moved Firewalling
    2 Posts 2 Posters 544 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • W Offline
      wiz561
      last edited by

      Quick question…  I have a cable modem that goes into the pfsense router and multiple internal subnets.  I have one subnet for machines that I want to use an openvpn client (PIA).

      If I wanted to allow incoming SSH on the cable modem IP (not going through the VPN), do I just create the rules like I normally would and it all works?  I hope that kind of makes sense....  I thought I tried it before and it seemed like it opened ssh on the VPN side but not the cable modem side.

      Thanks!

      1 Reply Last reply Reply Quote 0
      • jimpJ Offline
        jimp Rebel Alliance Developer Netgate
        last edited by

        If you allow it inbound on the WAN to the firewall itself (or a port forward) it will work independently from the VPN.

        That said, unless you have SSH access restricted to key-based authentication only, you should not expose SSH to the Internet from any type of connection.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2026 Rubicon Communications LLC (Netgate). All rights reserved.