Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Azure - OpenVPN Remote access tunnel - NAT when try to reach other azure VM in the same vnet

    Scheduled Pinned Locked Moved NAT
    3 Posts 2 Posters 365 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      toni.planas
      last edited by

      Hi,

      I have a pfsense on azure and I have setup a remote access OpenVPN connection. We don't have any problems to connect to this endpoint. When I connect to that openvpn connection and try to reach other azure VM in the same vnet, the pfsense VM NATs the traffic

      We have the same configuration in AWS and the pfsense VM doesn't NATs the traffic.

      There is some way to avoid that the pfsense NATs the traffic?

      Thanks

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        Firewall > Outbound NAT

        Hybrid Mode

        Make a NO NAT rule for the sources and destinations you do NOT want to NAT.

        You will need to tell Azure to route the traffic for the OpenVPN tunnel network to pfSense.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • T
          toni.planas
          last edited by

          Hello Derelict,

          Your advice has worked very well.

          Thanks

          1 Reply Last reply Reply Quote 1
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.