pfsense with domain controller issue
-
Hi Guys,
Firstly i'm not sure if this is a specific issue with just the openvpn or if this is an overall issue with my setup of the DHCP and DNS so this may need to be moved to the VPN forum if its in the wrong place (aoologies in advance,
Ok first the setup:
- Windows 2012 doman controller for DHCP and DNS
- Clients all point to windows AD server and all seems to be working ok
- AD forwarder set to PFSENSE
- PFsense - General tabe "DNS Server" set to 1.1.1.1 and 1.0.0.1 Dns over disabled, dns forwarder disabled
- Domain set in general page
- DHCP disabled
- DNS Resolver enabled (settings below in screenshot)
- DNS domain overides set at the bottom of the DNS resolver
- Firewall rules for LAN - any any - (for now while i get this working!!)
- Firewall rules on vpn
-- allow all to all LAN and openvpn subnet
-- allow all to non subnet addresses via wan gw
ok so now the issue:
- When i connect via the vpn i sometimes can get to pfsense but other times it just times out and won't connect.
- if its times out then it won't connect at all for ages no matter how many times i connect and reconnect.
- sometimes if I change to mobile network i can get it working
However-- i can always remote desktop to the AD server and any other machine on the network. It seems only the web interface and internet access get locked down. I have tried doing an nslookup and it resolves all the machines correctly and ping also works.
So it looks like something firewall related but my rules are allow any so i can't seem to figure out where to start looking.
Any help appreciated and i can start uploading any relevant screenshots as required to show the setup. Does the setup look right for AD setup?