OpenVPN dial on demand
-
Hi,
is there a possibility do dial an OpenVPN client in pfSense on demand?
My ISP provides me not only with internet connectivity but also with IPTV, internal forums etc. This stuffs are accessible only within my ISP network. Besides all other services, the ISP provides me with remote access to its network through OpenVPN. I have a flat in another city and there is a pfSense box as a router. I successfully set up an OpenVPN client in pfSense. It can connect to my ISP servers, get an IP address, use it as a gateway and when a request to specific IP addresses (my ISP network) is made, it is NATed through this OpenVPN tunnel (so no site-to-site, I need to hide my remote location as one client). This works great and my computer in the remote location can access my ISP services with no need to locally dial OpenVPN from that computer. Now goes the bad things. I can dial OpenVPN only once, so when my pfSense router holds the connection, I am unable to dial another tunnel directly from my computer, if I am outside of my flat or house. Another strange thing is that if pfSense holds the tunnel for the longer time, it probably cause the crash of the WAN connection (tunnel GW and WAN GW are for no reasons down and only restart of OpenVPN daemon and PHP-FPM helps).
So is it possible to setup pfSense in the way, that I will define OpenVPN client, NAT rules etc., and pfSesne will dial the connection only when it is needed? Then it will hold it during the use and some specific time after last use and when this time expires, it will close the tunnel? (eg. the dial on demand function).
George