Pfsense openvpn to openvpn with Unraid

xman111

Hey guys, i am running openvpn on Pfsense at my house. I am going to put Pfsense at my parents house as well.

Is there a way to be connected to their Openvpn and copy files from my home network to their home network over the tunnel?

Right now i have openvpn server setup on unraid at their house. I can vpn into their place and see their server and shares but cannot see my own network. Is there any way to see both?

ps. i have an unraid machine at my house and at their house.

Rico

Sure, you just setup a Site-to-Site OpenVPN between your two pfSense.
https://docs.netgate.com/pfsense/en/latest/vpn/openvpn/index.html
You can go with Shared key or SSL/TLS (certificates).
https://docs.netgate.com/pfsense/en/latest/book/openvpn/site-to-site-example-configuration-shared-key.html
https://docs.netgate.com/pfsense/en/latest/book/openvpn/site-to-site-example-configuration-ssl-tls.html

-Rico

xman111

hey Rico, thanks so much for the reply. What is different from what you suggest to what i am doing now? other than the fact that instead of an unraid docker hosting the openvpn server at my folks house.

Rico

Well it's best practice to put OpenVPN on the edge device which in your case is pfSense.
No idea about unraid, but you said some stuff is not working right now in your setup.
So the difference is with two pfSense both OpenVPN I can tell you it will work 100%.

-Rico

xman111

thanks Rico.. So there is a difference between peer to peer and remote access that i have setup now on my pfsense.

Rico

Sure, Site-to-Site and Remote Access are total different operation modes.

-Rico

xman111

thanks Rico, i will go do some reading.. Really appreciate you taking the time to confirm for me.. have a great day!

xman111

Can i run an instance of both at the same time? I would like to use the server config so i can remote in with my Android phone and use the peer to peer so i can connect to my remote pfsense server. Maybe using different ports, 1194/1195.

Rico

Sure, you can have as many OpenVPN server and/or client instances as you want.
Just check to not overlap any tunnel networks, they need to be unique per instance.

-Rico

xman111

thanks Rico!!!!

xman111

had a spare computer and 2 public ip addesses from my ISP. Tried it out and it worked pretty good.. was able to see both networks, etc. there are a few issues i need to sort out with Windows Firewall but it worked well. thanks for your help.

Rico

Glad you have it working.

-Rico