Problem privlan access site-to-site



  • Hi guys,

    Let me show my cenario:

    OpenVPN Server: Linux CentOS 6.5.
    eth0 - public ip
    eth1 - privlan (10.9.0.1/24)
    OpenVPN Client: PfSense 2.4.4-RELEASE-p2
    em0 - public ip
    em1 - privlan (192.168.0.1/24)

    Linux (server.conf):
    port 1194
    proto udp
    dev tun
    ca ca.crt
    cert server.crt
    key server.key
    dh dh2048.pem
    topology subnet
    server 10.8.0.0 255.255.255.0
    ifconfig-pool-persist ipp.txt
    push "route 10.9.0.0 255.255.255.0"
    client-to-client
    keepalive 10 120
    cipher AES-256-CBC
    user nobody
    group nobody
    persist-key
    persist-tun
    status openvpn-status.log
    verb 3
    explicit-exit-notify 1

    Client PfSense conf:
    7fa16abc-3d7c-465d-9280-a0e0595df0f2-image.png
    b6fe954d-7a78-4da1-a0e7-0624b993b4ab-image.png
    cd6c5fcb-2ffd-4d93-8241-6a298ad4b203-image.png

    I was able to connect the client (pfsense) to server (centos) and ping all interfaces.

    At PfSense i can ping the server ip: 10.9.0.1/24.
    At CentOS i can ping the PfSense tunnel ip: (10.8.0.2)

    Between server and pfsense, everything works.

    How i can allow the traffic to all my hosts at 192.168.0.0/24 to access the privlan (10.9.0.0/24) (transparent).
    I think im doing something wrong and i cant see what im missing.

    Thanks in advance.



  • whats im missing?


Log in to reply