4. Can ping internal network but access via TCP (ssh or http or smb) does not work

Can ping internal network but access via TCP (ssh or http or smb) does not work

  • Q

    I have a remote connect to a pfSense machine running OpenVPN in remote access mode. The remote client is a Mac OS X laptop running Viscosity. The connection is made and from there I can ping the LAN side of pfSense firewall (e.g. 10.10.10.1) as well as internal hosts e.g. 10.10.10.10 and 10.10.10.111.

    However I can not say connect to the WebGUI of pfSense using http/https. Neither can I ssh to a host on the LAN side.

    OpenVPN is set up in remote access (SSL/TLS) mode. The LAN side firewall rule allows any to any. As does the OpenVPN interface. It allows any to any. Any ideas what is going on?

    0

  • Hi,

    LAN rules aren't important, as initial traffic goes out the LAN, not coming in.

    "VPN"(or, if absent, "OpenVPN" tab rules) rules are important :

    0_1536296717294_ef132e19-b33e-4ea1-8446-ed0be1b97912-image.png
    do you see the state counters going up ?

    And, as you didn't mention : some other little details, like the local LAN from where you run your Mac with Viscosity must be different as the remote LAN on pfSense with OpenVPN.

    0
oing on 1
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2018 Rubicon Communications, LLC | Privacy Policy