Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Can connect to OpenVPN Server but loose access

    Scheduled Pinned Locked Moved OpenVPN
    23 Posts 2 Posters 1.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      comet424
      last edited by comet424

      well it seemed to work.. if it doesnt work then how you make the kill switch so if vpn service is down no interenet traffic may goto that computer..

      and my tunnel network is 192.168.0.100/24 and my local is 192.168.0.0/24

      and i have set the do not pull routes under the nordvpn

      1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator
        last edited by

        Sorry but if something is working how you want, its not because of that rule.. Sorry but that rules says block if you source is 192.168.0.5 as the IP and its dest is your wan address.. Lets say that is 1.2.3.4 then block it.. It has ZERO use or need of a gateway since its a block rule to start with.

        And going to say 4.5.6.7 some public IP on the internet is NOT your wan address of 1.2.3.4 so that rule would not even trigger..

        What I suggest you do is read the book on policy routing and how rules are evaluated on the firewall..

        Rules are evaluated top down, first rule to trigger wins, no other rules are evaluated. There is plenty of info on a "kill switch" Derelict I believe did a whole long how to on it somewhere.. There might even be a hangout on it? Which are now available on youtube vs those hey bring traffic to my site because I have pfsense in my subject..

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        1 Reply Last reply Reply Quote 0
        • C
          comet424
          last edited by

          im sure im done this wrong.. and not trying to get you mad.. just learning as i go
          and ok ill check out that stuff

          reason i put the block on is.. its below the NordVPN and doesnt that mean
          yes when NordVPN service is working it does that rule.. but if the NordVPN is offline it would skip that rule right ..or does it still keep that rule... as thats the reason i put that block below nordvpn incase the service would shut off then the rule gets skipped and goes to allow it..
          because the last line is your Default Lan so when the NordVPN goes down.. i still can use the internet im just not behind it anymore...

          so thats how i thought it worked
          NordVPN up -----> all computers are behind vpn
          NordVPN goes down -----> blocks the 1 computer... ---->runs last rule that allows rest of the computers to access the internet...

          thought thats how those rules worked i have set....

          as for the block of the tunnell here is the image but im sure i did it wrong.. but im trying and ill google the info you mentioned thanks so far0_1536417090501_openvpn5.JPG

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.