RADIUS authentication for OpenVPN

breakaway

How do I tell my pfSense to use the IPSEC tunnel to access the radius server?

My radius server is at a remote site, but when I add a RADIUS server to test, I can't even see the pfSense sending any info to the radius server. I assume this is because it is using the "default gateway" and therefore failing.

Is it possible to tell the pfSense to use teh IPSEC tunnel to reach the RADIUS server?

jimp

It's not simple to have the firewall do that, you have to use a somewhat redundant gateway+route as described here:

https://doc.pfsense.org/index.php/Why_can't_I_query_SNMP,_use_syslog,_NTP,_or_other_services_initiated_by_the_firewall_itself_over_IPsec_VPN