[solved] Remote Access won't pass into Site to Site
-
I run pfSense in VirtualBox, and it controls several VLANS. It connects to a pfSense OpenVPN site to site server hosted at Vultr. From Vultr, I can ping anything on my VLANS (the site to site tunnel works).
I've also set up an OpenVPN Remote Access server on Vultr. I can connect my netbook (Lubuntu 19.10) to it and it routes everything through. I've chosen the force all client traffic through option on the server.
Internet ^ | | Local VLANS -> Site to Site -> Vultr <- Remote Access VPN <- Netbook
I can not, however, ping from my netbook to the VLANS behind the site to site. The firewall is set to allow everything in the OpenVPN tunnels, and I don't see anything interesting in the firewall logs. I've also tried to push the route, but without success.
I've tried to turn my site to site connection into an interface on Vultr, in hopes of creating a static route. Everytime I try that, webConfigurator crashes and I have to restore previous configuration.
I've also tried setting up a Client Specific Override, but that doesn't seem to work either.
I know this is a wacky setup. My network is behind NAT, and I don't want to mess with the upstream router (and possibly disrupt my housemates). Also, this setup would also essentially give me a static public IP.
I've spent a couple of days trying to solve this. The really frustrating part is I've achieved this very setup in the past (I don't remember it being difficult either), I just forgot how.
I am stumped. Any help would be greatly appreciated.
Thanks
-
You have to push the routes to your VLANs to the remote access client and as well add the access servers tunnel network to the "Remote Networks" on your local pfSense to add the route for it.
Also ensure that the access is allowed by firewall rules. -
@viragomann Got it working. Thank you!