Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Problem privlan access site-to-site

    Scheduled Pinned Locked Moved OpenVPN
    2 Posts 1 Posters 306 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      rafaelvolpeti
      last edited by

      Hi guys,

      Let me show my cenario:

      OpenVPN Server: Linux CentOS 6.5.
      eth0 - public ip
      eth1 - privlan (10.9.0.1/24)
      OpenVPN Client: PfSense 2.4.4-RELEASE-p2
      em0 - public ip
      em1 - privlan (192.168.0.1/24)

      Linux (server.conf):
      port 1194
      proto udp
      dev tun
      ca ca.crt
      cert server.crt
      key server.key
      dh dh2048.pem
      topology subnet
      server 10.8.0.0 255.255.255.0
      ifconfig-pool-persist ipp.txt
      push "route 10.9.0.0 255.255.255.0"
      client-to-client
      keepalive 10 120
      cipher AES-256-CBC
      user nobody
      group nobody
      persist-key
      persist-tun
      status openvpn-status.log
      verb 3
      explicit-exit-notify 1

      Client PfSense conf:
      7fa16abc-3d7c-465d-9280-a0e0595df0f2-image.png
      b6fe954d-7a78-4da1-a0e7-0624b993b4ab-image.png
      cd6c5fcb-2ffd-4d93-8241-6a298ad4b203-image.png

      I was able to connect the client (pfsense) to server (centos) and ping all interfaces.

      At PfSense i can ping the server ip: 10.9.0.1/24.
      At CentOS i can ping the PfSense tunnel ip: (10.8.0.2)

      Between server and pfsense, everything works.

      How i can allow the traffic to all my hosts at 192.168.0.0/24 to access the privlan (10.9.0.0/24) (transparent).
      I think im doing something wrong and i cant see what im missing.

      Thanks in advance.

      1 Reply Last reply Reply Quote 0
      • R
        rafaelvolpeti
        last edited by

        whats im missing?

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.