Pfsense openvpn to openvpn with Unraid
-
Hey guys, i am running openvpn on Pfsense at my house. I am going to put Pfsense at my parents house as well.
Is there a way to be connected to their Openvpn and copy files from my home network to their home network over the tunnel?
Right now i have openvpn server setup on unraid at their house. I can vpn into their place and see their server and shares but cannot see my own network. Is there any way to see both?
ps. i have an unraid machine at my house and at their house.
-
Sure, you just setup a Site-to-Site OpenVPN between your two pfSense.
https://docs.netgate.com/pfsense/en/latest/vpn/openvpn/index.html
You can go with Shared key or SSL/TLS (certificates).
https://docs.netgate.com/pfsense/en/latest/book/openvpn/site-to-site-example-configuration-shared-key.html
https://docs.netgate.com/pfsense/en/latest/book/openvpn/site-to-site-example-configuration-ssl-tls.html-Rico
-
hey Rico, thanks so much for the reply. What is different from what you suggest to what i am doing now? other than the fact that instead of an unraid docker hosting the openvpn server at my folks house.
-
Well it's best practice to put OpenVPN on the edge device which in your case is pfSense.
No idea about unraid, but you said some stuff is not working right now in your setup.
So the difference is with two pfSense both OpenVPN I can tell you it will work 100%.
-Rico
-
thanks Rico.. So there is a difference between peer to peer and remote access that i have setup now on my pfsense.
-
Sure, Site-to-Site and Remote Access are total different operation modes.
-Rico
-
thanks Rico, i will go do some reading.. Really appreciate you taking the time to confirm for me.. have a great day!
-
Can i run an instance of both at the same time? I would like to use the server config so i can remote in with my Android phone and use the peer to peer so i can connect to my remote pfsense server. Maybe using different ports, 1194/1195.
-
Sure, you can have as many OpenVPN server and/or client instances as you want.
Just check to not overlap any tunnel networks, they need to be unique per instance.-Rico
-
thanks Rico!!!!
-
had a spare computer and 2 public ip addesses from my ISP. Tried it out and it worked pretty good.. was able to see both networks, etc. there are a few issues i need to sort out with Windows Firewall but it worked well. thanks for your help.
-
Glad you have it working.
-Rico
