VPN two way communication

adamlevine

VPN two way communication

I have OpenVPN setup on Debian on a tun interface handing out 10.8.0.0/24 to connect remote SIP phones to an Asterisk system. The phone connects to the vpn server and registers with the system as expected. The only issue I have is I cannot connect to the web interface of the phone that is on the vpn from the network that the vpn server is hosted. I'm guessing it has something to do with iptables but I have been unsuccessful so far.

My current iptables configuration is…

iptables -A INPUT -i ens192 -m state --state NEW -p udp --dport 1194 -j ACCEPT

iptables -A INPUT -i tun+ -j ACCEPT

iptables -A FORWARD -i tun+ -j ACCEPT
iptables -A FORWARD -i tun+ -o ens192 -m state --state RELATED,ESTABLISHED -j ACCEPT
iptables -A FORWARD -i ens192 -o tun+ -m state --state RELATED,ESTABLISHED -j ACCEPT

iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o ens192 -j MASQUERADE

iptables -A OUTPUT -o tun+ -j ACCEPT

Any suggestions on how I can access the VPN clients?

JKnott

Ummm…

This board is about pfSense, which runs on FreeBSD and uses pf, not iptables.  Are you sure you're in the right place?