Can't access local network when connected from pfsense to remote side via vpn

emammadov

Hello,

I am using pfsense 2.4.4. I have several vpn (pptp and etc) connections to overseas. While connected via vpn, I can't access our local network. How can I solve it? I have used Mikrotik before, I didn't have such problem on that.

Asamat

Did you try OpenVPN? I hope it will help you: https://www.youtube.com/watch?v=qscIIZ10WTQ

Rico

PPTP Support is removed from pfSense 2.3 or something so how can you use it?

-Rico

JKnott

Why are you using PPTP? It's been known to be insecure for years. Use OpenVPN or IPSec instead. I use OpenVPN.

emammadov

My question seemed unclear. The remote organization has pptp vpn which we give IT support to them. When I connect them via pptp vpn, I can't access my local network then.

Rico

Still unclear, with pfSense 2.4.4 you can't connect as PPTP Client because the PPTP VPN Client is removed.
Or do you use PPTP directly on your Client machine? This has nothing to do with pfSense then....and you should never use PPTP anyway since it is completely broken and unsecure.

-Rico

emammadov

Pptp vpn is in my windows machine to connect to remote sides. Our network is pfsense.

Prior to pfsense in our network, I have used Mikrotik, I didn't have this problem.
I disabled 'Use default Gateway for remote networks" on my windows machine, but then I can't access servers on remote network.

Rico

Overlapping Subnets in Local and Remote Side?

-Rico

emammadov

What I mean is, we are using pfsense at our company. I can access remote network servers, but can't access my local network when connected via vpn to remote side. Pfsense doesn't allow me to access my local network when connected to remote organization via vpn. But we used Mikrotik before pfsense at our network and we didn't have this problem.

stephenw10

@rico said in Can't access local network when connected from pfsense to remote side via vpn:

Still unclear, with pfSense 2.4.4 you can't connect as PPTP Client because the PPTP VPN Client is removed.

That's not actually entirely correct, you can still create a PPTP interface to use as a client. Though you should only do so if your ISP requires it for example.

Steve

stephenw10

@emammadov said in Can't access local network when connected from pfsense to remote side via vpn:

pfSense doesn't allow me to access my local network when connected to remote organization via vpn.

pfSense has no part in that decision. Your client either sends the traffic over the VPN or tries to use it's local connection.

Steve

Derelict

Right. pfSense has no impact on that. It's all in your client configuration. Nothing in pfSense can dictate how your LAN hosts talk to each other on LAN. You should be bringing this up with the people on the PPTP server side after you ask, "Why the hell are you still running PPTP?!?"

Nobody should be using PPTP as has been said. It should be considered as adding no security at all.

kono

@stephenw10 How would one go about doing that? I have no other choice but to use PPTP VPN. I tried using <2.3 versions but my Realtek NIC isn't being detected on those.

Rico

PPTP, Realtek NIC, ... some nasty talk is going on in this Thread.

-Rico

stephenw10

You can choose it as a PPP type for a client connection if your ISP requires it:
https://www.netgate.com/docs/pfsense/book/interfaces/interfacetypes-ppps.html#pptp-point-to-point-tunneling-protocol

I don't think it will connect to a remote VPN server though.

Steve

kono

I managed to make 2.2.6 detect my Realtek NIC by patching the driver. But just now realized that the PPTP feature on the pfSense is only for setting itself as a VPN server. Opposite of what I wanted