VPN two way communication



  • VPN two way communication

    I have OpenVPN setup on Debian on a tun interface handing out 10.8.0.0/24 to connect remote SIP phones to an Asterisk system. The phone connects to the vpn server and registers with the system as expected. The only issue I have is I cannot connect to the web interface of the phone that is on the vpn from the network that the vpn server is hosted. I'm guessing it has something to do with iptables but I have been unsuccessful so far.

    My current iptables configuration is…

    iptables -A INPUT -i ens192 -m state --state NEW -p udp --dport 1194 -j ACCEPT

    iptables -A INPUT -i tun+ -j ACCEPT

    iptables -A FORWARD -i tun+ -j ACCEPT
    iptables -A FORWARD -i tun+ -o ens192 -m state --state RELATED,ESTABLISHED -j ACCEPT
    iptables -A FORWARD -i ens192 -o tun+ -m state --state RELATED,ESTABLISHED -j ACCEPT

    iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o ens192 -j MASQUERADE

    iptables -A OUTPUT -o tun+ -j ACCEPT

    Any suggestions on how I can access the VPN clients?



  • Ummm…

    This board is about pfSense, which runs on FreeBSD and uses pf, not iptables.  Are you sure you're in the right place?