PfSense-OpenVPN only conection

m0t0b0y1337 · Feb 12, 2021, 1:34 AM

Hi team, I intend to use pfsense only because of openvpn, just to access a LAN. I intend to create an openvpn wizard, and forward the port of a 1194 / udp firewall to the pfsense lan or wan interface, I believe that what you think would work? who has more experience in it? will I have to do any other configuration? thank you advanced

viragomann · Feb 12, 2021, 1:14 PM

@m0t0b0y1337
So you want to connect WAN and LAN to the same subnet. That won't work reliably.

Is there any option to set up a transit network between the router and pfSense? It may be a VLAN on the existing hardware.

johnpoz · Feb 12, 2021, 1:22 PM

As @viragomann mentions. A transit network to where your pfsense openvpn box will sit is prob best solution.

Running a openvpn server downstream of your edge router becomes problematic..

Unless your going to do host routing on the devices your wanting to talk to in your lan, or you do source natting at the openvpn device.

m0t0b0y1337 · Feb 12, 2021, 2:08 PM

so, we already have an edge fw before pfsense. I do not have a license to use its vpn. there we will use pfsense. understood?

JKnott · Feb 12, 2021, 2:35 PM

@m0t0b0y1337

That means you'll have to provide another route for traffic going through the VPN, in addition to the default route. I don't know that DHCP can do that.

johnpoz · Feb 13, 2021, 5:29 AM

@m0t0b0y1337 said in PfSense-OpenVPN only conection:

I do not have a license to use its vpn. there we will use pfsense. understood?

Well then just replace it with pfsense - problems solved.