Issues with OpenVPN
-
Hi all.
For work issues, I am learning to manage OpenVPN with pfSense. The fact is that you created the VPN between my two houses, and the connection is up.
I have this scheme:Router 1 - pfSense - Client computers
Router 2 - pfSense - Client computersRouter 1 - 192.168.5.57 (WAN) pfSense (LAN) 192.168.5.200 - Client computers
Router 2 - 192.168.0.200 (WAN) pfSense (LAN 192.168.0.2 - Client Devices.From either of the two topics, you can click on any computer on the other network, through the VPN. The problem is when, from my own PC, it tries to click on a computer, and now it does not respond.
Both in WAN, as in LAN, and in OPENVPN I have only one rule that allows all traffic, in both cases. And the routers direct all the ports to the pfsense.
What lack of configuration? Understand that it is a problem of routes, but it has not been done from the same pfSense so that the teams see each other.
Thank you all.
-
Typo or is your WAN and LAN for both routers in the same subnet?
This would create different kind of problems anyway. Fix this first.-Rico
-
@Rico there aren’t in the same lan, there are different.
Edit: wan1 and lan1 are in the same subnet, and wan2 and lan2 are un the same subnet, different each other
-
@jogofus said in Issues with OpenVPN:
Edit: wan1 and lan1 are in the same subnet, and wan2 and lan2 are un the same subnet, different each other
How long is your subnet mask? If not at least a /25, that config won't work. You cannot have both sides of a router in the same subnet.
-
@JKnott first subnet is in 192.168.5.0/24 and the second in the 192.168.0.0/24
-
@jogofus said in Issues with OpenVPN:
@JKnott first subnet is in 192.168.5.0/24 and the second in the 192.168.0.0/24
Look at both sides of either router:
Router 1 - 192.168.5.57 (WAN) pfSense (LAN) 192.168.5.200 - Client computers
Router 2 - 192.168.0.200 (WAN) pfSense (LAN 192.168.0.2 - Client Devices.Router 1, both WAN & LAN are in the same subnet. Same with router 2, assuming the LAN subnet mask is /24. It may work if the mask is /25 or longer.
Please post the subnet mask for all interfaces.