Vpn client chain - isp -) pf -) pf
-
Hi
I did get loss into the port forward or nat as there's something that is blocking the webaccess. I have a fresh Pf2.5, nat manual all rule copy and set to the vpninterface, in rule the ipv4 set to gateway. Basically by itself the Pf with openVpn client run perfectly and got the proper vpn ip and no dns leak.But with 2 Pf2.5 with vpn client, if put a second Pf in front of the first one : i only get terminal internet with : ping, curl, wget. i do get the vpn ip fine. But no internet webpage can be loaded. Here the setup:
Isp -> wan Pf#1 -> LAN (192.168.70.0) :vpn client server1 -> Pf#2 wan(192.168.70.150) lan(192.168.40.0) : vpn client server2
If i set the Pf#2 with Stunnel, all do work fine = browser page do load. if i set Pf1 in tcp or udp1194 and #2 in tcp or udp 443 no change, only stunnel can make a web access. So i don't know how to set a special rule or so.. or is it something related to passing icgmp packet that do something... or need to change setting in the gateway.. But again, in terminal it do work back to back.. only nothing in browser.
Thank for hints.
-
@docop2 hum interesting.. it's the same if i plug to pf1 a win10pc and open a vpn client, as soon it start.. it only give me terminal, no more web browsing.