• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Cannot access static IPs on LAN from VPN

Scheduled Pinned Locked Moved OpenVPN
5 Posts 2 Posters 721 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • B
    bryon
    last edited by bryon Mar 26, 2020, 10:59 PM Mar 26, 2020, 10:58 PM

    I have a strange problem where I have successfully configured my VPN and can connect from an iPhone and another macOS device. However I can only access the LAN port of pfSense, or machines that have their IP address served from pfSense's DHCP server. Anything with a static IP is unreachable - even if I provide a DHCP static mapping.
    The static IP addresses are outside the range allocated by DHCP but in the same subnet.
    I don't even know how to start debugging this one. Ideas?
    Thanks in advance
    Bryon

    1 Reply Last reply Reply Quote 0
    • V
      viragomann
      last edited by Mar 26, 2020, 11:28 PM

      Is pfSense the default gateway on all your LAN devices?

      Ensure that the destination machines firewall doesn't block the access.

      1 Reply Last reply Reply Quote 0
      • B
        bryon
        last edited by Mar 27, 2020, 10:20 AM

        Hi,
        I have debugged this a little further and the problem is not quite what I thought. My environment has pfSense running as a VM in Proxmox. I can access everything but Proxmox (which is what I was testing against all along).

        Proxmox has 3 NICs. Two dedicated to pfSense for LAN/WAN and one as a management NIC.
        Proxmox LAN IP address is 10.10.10.50/16 and all VMs share this bridge
        pfSense VM LAN IP address is 10.10.0.1/16
        pfSense VM WAN IP address is auto assigned

        I have reset the DHCP range to 10.10.10.1-10.10.10.49 and I can SSH and ping anything on my internal network except the hypervisor hosting pfSense - which is a problem because I can't start VMs remotely...

        Thanks

        1 Reply Last reply Reply Quote 0
        • V
          viragomann
          last edited by Mar 27, 2020, 1:25 PM

          @bryon said in Cannot access static IPs on LAN from VPN:

          Proxmox has 3 NICs. Two dedicated to pfSense for LAN/WAN and one as a management NIC.
          Proxmox LAN IP address is 10.10.10.50/16 and all VMs share this bridge

          So you have a separate management interface for Proxmox, but Proxmox is connect internally to the LAN bridge or to both?

          Have set the gateway correctly in Proxmox? It must be the pfSense LAN IP.

          That's the same issue, we discussed here a view days ago: https://forum.netgate.com/topic/151472/access-proxmox-management-when-pfsense-is-not-running

          B 1 Reply Last reply Mar 27, 2020, 11:53 PM Reply Quote 0
          • B
            bryon @viragomann
            last edited by Mar 27, 2020, 11:53 PM

            @viragomann - THANK YOU.
            That was the problem. I had recently changed from a an external modem handling PPPoE to moving PPPoE onto pfSense. Proxmox needed to have the ADSL modem IP address because of the chicken and egg scenario of building the pfSense VM after I built and patched up Proxmox. I forgot about Proxmox's gateway address needing to change.
            I really appreciate the help.
            Bryon

            1 Reply Last reply Reply Quote 0
            5 out of 5
            • First post
              5/5
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
              This community forum collects and processes your personal information.
              consent.not_received