1. Home
  2. pfSense® Software
  3. OpenVPN
  4. Can ping internal network but access via TCP (ssh or http or smb) does not work

Can ping internal network but access via TCP (ssh or http or smb) does not work

  • Q

    I have a remote connect to a pfSense machine running OpenVPN in remote access mode. The remote client is a Mac OS X laptop running Viscosity. The connection is made and from there I can ping the LAN side of pfSense firewall (e.g. 10.10.10.1) as well as internal hosts e.g. 10.10.10.10 and 10.10.10.111.

    However I can not say connect to the WebGUI of pfSense using http/https. Neither can I ssh to a host on the LAN side.

    OpenVPN is set up in remote access (SSL/TLS) mode. The LAN side firewall rule allows any to any. As does the OpenVPN interface. It allows any to any. Any ideas what is going on?

    0
  • Gertjan

    Hi,

    LAN rules aren't important, as initial traffic goes out the LAN, not coming in.

    "VPN"(or, if absent, "OpenVPN" tab rules) rules are important :

    0_1536296717294_ef132e19-b33e-4ea1-8446-ed0be1b97912-image.png
    do you see the state counters going up ?

    And, as you didn't mention : some other little details, like the local LAN from where you run your Mac with Viscosity must be different as the remote LAN on pfSense with OpenVPN.

    0
oing on 1
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy