No LAN access for 2nd client/user
-
Created a openvpn server through the wizard. Changed NAT to Hybrid. Created and Outbound rule to allow traffic from LAN to Openvpn interface. My first user, can access all parts of the network without any issue. Created a 2nd user through the System-User page. Added a new user certificate. Created a 2nd client with user 2 information. downloaded the user2 client .ovpn User2 will connect to the server, and has outside access to the internet, but cannot ping any local resource. User1 has access to all information. Not sure where to even start
-
@b381 Can you take a look in your system routing table to see if there is an active route for the second IP address issued? this sounds like it could be related to my issue.
-
@handleric there is a route for my first user on IP 10.1.10.2 but not for my other 2 users.
-
Do you by chance have any static routes defined for your VPN Client subnet?
-
@handleric not that I am aware of, but I don't know where to check that. pfsense is all new to me.
-
@b381 You would have defined them under System>Routing>Static Routes
-
@handleric I do have one but I didn't put it there. At least not that I remember. I went through several tutorials to get this to even work with 1 user. I've always used openVPN but this has been the most frustrating setup I have run across.
It has Network at 10.1.10.0/24. Gateway Null4 - 127.0.0.1
-
@b381 and 10.1.10.0/24 is the subnet used by your VPN clients? If you you'll need to remove that as it's telling all traffic destined for your VPN clients to go into a black hole instead of to the software adapter.
-
@handleric I think that fixed the issue. Thank you!! This has been driving me nuts!