• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

How to send VPN traffic via gateway? Static routes & Firewall rules are ignored

Scheduled Pinned Locked Moved Routing and Multi WAN
2 Posts 1 Posters 277 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • D
    dims
    last edited by Mar 19, 2018, 6:22 PM Mar 19, 2018, 5:00 PM

    I am trying to connect to some OpenVPN server with OpenVPN client from LAN machine behind the pfSense router.

    Experimentally I found that my server restarts connection if multiple WANs are enabled.

    Now I am trying to do so that it worked with one WAN automatically, i.e. I want to pass all UDP traffic to specific address via specific interface.

    I tried:

    1. add firewall rule with IP + UDP + gateway ==> didn't worked

    2. add static route with IP ==> didn't worked

    3. add top firewall route with IP+UDP and w/o gateway to trigger default routing usage and + static route IP ==> didn't worked.

    I am observing interfaces with tcpdump -i IFACE host HOST.

    I started OpenVPN connection from Windows machine and started ping -t 10.10.0.62 where this IP is from VPN subnet.

    In any case I see most packets go through single WAN interface but some packets still go through another WANs.

    Why? How to force UDP traffic to go via specific gateway correctly?

    1 Reply Last reply Reply Quote 0
    • D
      dims
      last edited by Mar 19, 2018, 7:09 PM

      It was idle OpenVPN connection from third machine from the LAN keeping tunnel and packets going!!

      1 Reply Last reply Reply Quote 0
      1 out of 2
      • First post
        1/2
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
        This community forum collects and processes your personal information.
        consent.not_received