Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Configure VPN behind ISP > USG >pfsense(VPN)

    Scheduled Pinned Locked Moved OpenVPN
    2 Posts 2 Posters 635 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      juanki_hd
      last edited by juanki_hd

      Good afternoon,

      I want to create a VPN to access my office services from home.
      For now I have a unifi USG and I make tunnels to access services, but this is no longer enough for 1 user, it has been expanded and now there are several users who need it.

      For this I have tunnels with port forwarding and so I access various services from outside.

      Anyone have a tutorial or manual set up pfsense to perform VPN behind a USG.

      My idea was to open outer port -> forward to USG -> forward to pfsense.
      I think it would be double NAT?
      or how can I create the VPN service behind USG?

      this is my network:

      Screenshot_3.png

      help please how to fix it.
      Thank you very much!!

      DaddyGoD 1 Reply Last reply Reply Quote 0
      • DaddyGoD
        DaddyGo @juanki_hd
        last edited by DaddyGo

        @juanki_hd

        hi,

        it seems to me that, you are using pfSense only......., because of the OpenVPN server

        @juanki_hd "I think it would be double NAT?" - (you already have one)

        your current system also have dual-NAT configuration
        (ISP router to USG = double-NAT, because RFC1918 192.168......172.10.......)

        BTW: pfSense has more serious abilities than a USG and is more customizable.

        all your problems will be solved, if you put your ISP device in bridge mode and pfSense will replace USG
        and USG will be listed on eBay (yeah, joke, but possible) 😉

        Cats bury it so they can't see it!
        (You know what I mean if you have a cat)

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.