Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    VPN point-to-point problem

    Routing and Multi WAN
    3
    17
    338
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • federicop
      federicop last edited by

      Hi, I have a point-to-point VPN connection and everything works.
      That is, I can see the pfsense web interface remotely (of the two VPNs).

      just that I have a problem, I have a small nas with a web interface on the "B" lan that I can not reach and I do not understand why!

      LAN "A" 192.168.0.0 - PFSENSE 192.168.0.1
      LAN "B" 192.168.1.0 - PFSENSE 192.168.1.1 - NAS 192.168.1.2

      if from lan "A" I enter 192.168.1.1 I enter pfsense quietly but if I enter 192.168.1.2. I can not see the nas login page

      obviously inside the "B" lan typing the ip of the nas it works!

      what could it depend on?

      1 Reply Last reply Reply Quote 0
      • N
        netblues last edited by

        Most probably nas doesn't have a default gateway, or has security that doesn't allow access from remote lans.
        Can you actually ping/access other hosts on B from A?

        1 Reply Last reply Reply Quote 0
        • federicop
          federicop last edited by federicop

          once I can access other hosts other times no!

          the Gtateways defoult was and the OpneVPN rules are ipv4 Protocol * source * port * destination *

          1 Reply Last reply Reply Quote 0
          • N
            netblues last edited by

            What are the settings of the ipv4 local networks on the server configuration?

            1 Reply Last reply Reply Quote 0
            • federicop
              federicop last edited by

              Server:
              WAN 192.168.1.2 - WANGW 192.168.1.1
              LAN 192.168.0.1
              Server OpenVPN
              IPv4 Tunnel Network: 192.168.4.0/24
              IPv4 Remote network(s) 192.168.2.0/24

              Client:
              WAN 192.168.1.3 - WANGW 192.168.1.1
              LAN 192.168.2.1
              Client OpenVPN
              IPv4 Tunnel Network: 192.168.4.0/24
              IPv4 Remote network(s) 192.168.0.0/24

              1 Reply Last reply Reply Quote 0
              • N
                netblues last edited by

                Seems ok. Check the nas for security settings. Can you ping it?

                1 Reply Last reply Reply Quote 0
                • federicop
                  federicop last edited by

                  @netblues said in VPN point-to-point problem:

                  Seems ok. Check the nas for security settings. Can you ping it?

                  Can you ping it?
                  Yes

                  1 Reply Last reply Reply Quote 0
                  • N
                    netblues last edited by

                    If you can ping the nas, then pfsense configuration is ok. Probably the nas has some access list functionality.

                    1 Reply Last reply Reply Quote 0
                    • federicop
                      federicop last edited by

                      the nas is ok. I have the same problem on other hosts that of switch management

                      1 Reply Last reply Reply Quote 0
                      • chpalmer
                        chpalmer last edited by

                        This post is deleted!
                        1 Reply Last reply Reply Quote 0
                        • chpalmer
                          chpalmer last edited by chpalmer

                          Can you show your VPN firewall rules on both routers?

                          1 Reply Last reply Reply Quote 0
                          • federicop
                            federicop last edited by

                            Client:
                            0_1543007010349_Schermata 2018-11-23 alle 21.58.55.png

                            0_1543007024369_Schermata 2018-11-23 alle 21.59.11.png

                            Server
                            0_1543007037956_Schermata 2018-11-23 alle 21.58.32.png

                            OpenVPN Client
                            0_1543007065848_Schermata 2018-11-23 alle 21.59.46.png
                            0_1543007078317_Schermata 2018-11-23 alle 22.00.23.png
                            0_1543007103809_Schermata 2018-11-23 alle 22.01.22.png

                            OpenVPN Server
                            0_1543007129366_Schermata 2018-11-23 alle 22.02.00.png
                            0_1543007137104_Schermata 2018-11-23 alle 22.02.26.png
                            0_1543007152907_Schermata 2018-11-23 alle 22.02.39.png

                            1 Reply Last reply Reply Quote 0
                            • chpalmer
                              chpalmer last edited by

                              For your tunnel network you can use a /30 I usually like using something way outside my LANs.. 10.10.1.0/30 here.. but to each their own..

                              Your LAN on network A is now 192.168.6.0/24 ??

                              What is CimaVPN?

                              1 Reply Last reply Reply Quote 0
                              • federicop
                                federicop last edited by

                                LAN A (Server) 192.168.0.0/24
                                LAN B (Client) 192.168.6.0/24 .

                                CimaVPN it's the name of my VPN

                                chpalmer 1 Reply Last reply Reply Quote 0
                                • chpalmer
                                  chpalmer @federicop last edited by

                                  @federicop said in VPN point-to-point problem:

                                  LAN A (Server) 192.168.0.0/24
                                  LAN B (Client) 192.168.6.0/24 .

                                  CimaVPN it's the name of my VPN

                                  And that VPN relates to this scenario in what way?

                                  Is it directly associated with your OpenVPN connection somehow?

                                  Your screenshot above shows tabs for both on the same router..

                                  1 Reply Last reply Reply Quote 0
                                  • federicop
                                    federicop last edited by

                                    And that VPN relates to this scenario in what way?

                                    0_1543010225480_Schermata 2018-11-23 alle 22.55.44.png

                                    1 Reply Last reply Reply Quote 0
                                    • chpalmer
                                      chpalmer last edited by

                                      Are both of these routers on the same WAN router right now? Physically located at the same location?

                                      I see. I don't assign my openVPN connections to interfaces in that fashion myself so was trying to make sure.

                                      1 Reply Last reply Reply Quote 0

                                      Products

                                      • Platform Overview
                                      • TNSR
                                      • pfSense
                                      • Appliances

                                      Services

                                      • Training
                                      • Professional Services

                                      Support

                                      • Subscription Plans
                                      • Contact Support
                                      • Product Lifecycle
                                      • Documentation

                                      News

                                      • Media Coverage
                                      • Press
                                      • Events

                                      Resources

                                      • Blog
                                      • FAQ
                                      • Find a Partner
                                      • Resource Library
                                      • Security Information

                                      Company

                                      • About Us
                                      • Careers
                                      • Partners
                                      • Contact Us
                                      • Legal
                                      Our Mission

                                      We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

                                      Subscribe to our Newsletter

                                      Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

                                      © 2021 Rubicon Communications, LLC | Privacy Policy