vpn server behind pfsense



  • hi
    i've got a mac os x vpn server running behind the pfsense and i have the ports forwarded in the firewall in the portforwarding setting in pfsense i am not able to connect from the outside with my iphone vpn client. i am able to connect with the client from the lan side of the pfsense and not able to get on the internet at all nor am i able to see the local network at all.

    can anyone help with this


  • Rebel Alliance Global Moderator

    Not with that limited amount of information.

    What vpn protocol are you running? What ports did you forward - is your port forward even correct for the vpn you are using, is it even correct if right ports and or protocols.

    What is your vpn server using for gateway, does it have a firewall. Is your pfsense behind a nat? Are the protocol/ports even allowed from this outside phone connection your making.

    etc.. etc...



  • What vpn protocol are you running? l2tp/ipsec

    What ports did you forward - is your port forward even from? the nat port forwarding 1701 l2tp, 4500 ipsec nat t, 500 isakmp all pointing to the lan ip address of the server

    on the firewall tab i see the rules for those ports and the lan ip address of the server all ipv4 udp

    nothing on the rules lan tab for the l2tp/ipsec

    What is your vpn server using for gateway? the ip address of the lan side of the pfsense

    does it have a firewall? no

    Is your pfsense behind a nat? it is in the middle for the lan and the modem of which has its firewall off and the wan ip address of the pfsense is in it's dmc

    Are the protocol/ports even allowed from this outside phone connection your making.
    well before the pfsense in the middle the vpn server was on the lan and the modem was doing all the port forwarding and the phone was able to connect and send all traffic to the server and i was able to see all the computers on the lan



  • ok on one of the last questions what is the gateway that the server is using i just had a look and saw that it was not connected to the pfsense it is now connected and i am able to connect to the server from the wan side still not able to get to the internet from the phone when send all traffic is enable on the phone also when on the lan side i still able to connect but not able to get to the internet when send all traffic is enable



  • Then you have some setup issues with :
    @kramtw said in vpn server behind pfsense:

    mac os x vpn server

    Not reaching the "Internet" is a pure VPN setup thing.