pfSense Open VPN LAN Side issues....
-
Static routing “on” windows hosts, that’s definitely old school. Like lmhosts and netbios. I’ve got a better response though still trying to theorize
Lol and only ospf makes any sense if you’re talking about wan routes... static mappings on the router is what I was saying. Someone mentioned adding the routes to the hosts files or something that’s what I was suggesting against. Perfectly fine for routing.
-
Maybe a map ought to help isolate the problem. He’s got applications transmitting data to and fro externals, he’s trying to harden permissions and ports before he’s got it all working...
It sounds like trying to change the oil on an engine that’s still running. He’s gotta escalate to more control otherwise he’s gonna lose his mind and bring anyone trying to help along with him.
And no.... Just no.... You don’t use static mappings unless you absolutely have to, but given the circumstances maybe you made the right call. TCP and DNS are dynamic that was the metaphor. But Let’s not get into that. We can split hairs on that some other time, the point was just to find a way that involves less work and the router would’ve been the best way.
“However, I cannot for the life of me access other LAN side resources.” // he says it’s all Ip based though, so if he’s able to ping then it should access the resources fine. I wanna say it’s probably an accounting or permissions issue but it could just be a network file sharing issue or even a missing windows credential. Sometimes you can get one or two clients to connect to a share but if that’s all that’s set on the windows machine then you’re not going to get any other connections. It could also be Samba 1.0 CIFS support depending on what version of Windows, like they pulled it from 1709 and on, so the only option there is to install and reboot on the machine he’s accessing on the far side... if they’re up to date or not, but that’d depend on how he’s accessing the files...
He also said he hooked up one machine and it connected fine but it’s not staying alive... ?
, gedit /etc/hosts will modify most Unix host files but if you’re looking for back and forth then you also need to set the hostname for the machine... firewall-cmd or whichever equivalent of it is there, it’d be nice to know if the windows machines are workin while the Linux machines aren’t cause then the suggestion about getting the static routes to stay over reboot might help... but makes me think it really might just be a samba cifs 1.0 issue
I’d take a snapshot of the way it is set and focus on something far lan side.
Doesn’t sound like it’s just a routing issue if all these suggestions were made
-
All, many thanks for the help and the insight.
This honestly wasn't supposed to be difficult.
I've decided to get rid of pfSense altogether and use the facilities my commercial host has. It's not ideal, but it does work.
All I was trying to do was access my private network remotely as I've done numerous times before with a variety of products.
This has just cost me too much time as it is.
Thanks again