vpn server behind pfsense
i've got a mac os x vpn server running behind the pfsense and i have the ports forwarded in the firewall in the portforwarding setting in pfsense i am not able to connect from the outside with my iphone vpn client. i am able to connect with the client from the lan side of the pfsense and not able to get on the internet at all nor am i able to see the local network at all.
can anyone help with this
Not with that limited amount of information.
What vpn protocol are you running? What ports did you forward - is your port forward even correct for the vpn you are using, is it even correct if right ports and or protocols.
What is your vpn server using for gateway, does it have a firewall. Is your pfsense behind a nat? Are the protocol/ports even allowed from this outside phone connection your making.
What vpn protocol are you running? l2tp/ipsec
What ports did you forward - is your port forward even from? the nat port forwarding 1701 l2tp, 4500 ipsec nat t, 500 isakmp all pointing to the lan ip address of the server
on the firewall tab i see the rules for those ports and the lan ip address of the server all ipv4 udp
nothing on the rules lan tab for the l2tp/ipsec
What is your vpn server using for gateway? the ip address of the lan side of the pfsense
does it have a firewall? no
Is your pfsense behind a nat? it is in the middle for the lan and the modem of which has its firewall off and the wan ip address of the pfsense is in it's dmc
Are the protocol/ports even allowed from this outside phone connection your making.
well before the pfsense in the middle the vpn server was on the lan and the modem was doing all the port forwarding and the phone was able to connect and send all traffic to the server and i was able to see all the computers on the lan
ok on one of the last questions what is the gateway that the server is using i just had a look and saw that it was not connected to the pfsense it is now connected and i am able to connect to the server from the wan side still not able to get to the internet from the phone when send all traffic is enable on the phone also when on the lan side i still able to connect but not able to get to the internet when send all traffic is enable
Gertjan last edited by