Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Pinging from one client machine to another client machine

    OpenVPN
    3
    5
    18
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      DD11 last edited by

      Hi
      I have setup OpenVPN server and is working fine. Just curious to know why the clients of OpenVPN servers are not able to ping to their respective tunneled IP address ?

      Client 1 IP: 10.0.8.2
      Client 2 IP: 10.0.8.3

      Client 1> ping 10.0.8.3
      Pinging 10.0.8.3 with 32 bytes of data:
      Request timed out.
      Request timed out.

      Regards

      1 Reply Last reply Reply Quote 0
      • Gertjan
        Gertjan last edited by Gertjan

        Hi,

        34231689-3e9f-4c80-9a7a-f7a5d391e07c-image.png

        ?!

        edit :

        The firewall accepts ICMP packets ? For the correct destination ?

        1 Reply Last reply Reply Quote 0
        • D
          DD11 last edited by

          Hi
          @Gertjan
          Thanks for the reply. The options are set/checked. I have setup pfsense on its LAN interface only without firewall.

          So i think ICMP packets are already allowed.

          Regards

          Gertjan 1 Reply Last reply Reply Quote 0
          • Gertjan
            Gertjan @DD11 last edited by

            @DD11 said in Pinging from one client machine to another client machine:

            So i think ICMP packets are already allowed.

            OpenVPN clients are not connected to the LAN interface, so the firewall rules on the LAN interface are not used.

            The OpenVPN is different way of connecting to the router/vpn server pfSense, so a special interface is connected. I guess you already saw it : OpenVPN.

            Check out the OpenVPN "server" video from Netgate on Youtube. Several exist, as OpenVPN became a popular subject since March 2020.

            1 Reply Last reply Reply Quote 0
            • Pippin
              Pippin last edited by

              If the --client-to-client option (Inter-client communication) is active, these packets are not exposed to the server host (pfSense in this case).
              Firewall rules will therefore not have any effect.
              https://community.openvpn.net/openvpn/wiki/HowPacketsFlow

              Check the client(s) firewall.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post

              Products

              • Platform Overview
              • TNSR
              • pfSense
              • Appliances

              Services

              • Training
              • Professional Services

              Support

              • Subscription Plans
              • Contact Support
              • Product Lifecycle
              • Documentation

              News

              • Media Coverage
              • Press
              • Events

              Resources

              • Blog
              • FAQ
              • Find a Partner
              • Resource Library
              • Security Information

              Company

              • About Us
              • Careers
              • Partners
              • Contact Us
              • Legal
              Our Mission

              We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

              Subscribe to our Newsletter

              Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

              © 2021 Rubicon Communications, LLC | Privacy Policy