Phantom automatic UHS route.

Qualoom 0

Hello I describe the environment.
It is a Pfsense 21.02.RELEASE-P1 in AWS which has an OpenVpn server to connect through a LAN2LAN to an office.

The OpenVPN connects without problems and all the computers are accessible except one (a domain controller) for which a route appears automatically for the server's IP pointing to the MAC of the Pfsense network interface.
Destination Gateway Flags Use Mtu Netif Expire
default 10.0.20.1 UGS 111328179 1500 xn0
192.168.30.0/24 10.100.9.2 UGS 0 1500 ovpns3
192.168.30.201 06: 79: 79: 43: ec: 3d UHS 26 1500 xn0

If we delete the route manually with “route del -host 192.168.30.201” we have connectivity again through the VPN with the server, but after 15-20 minutes the route is generated again and we lose connectivity.
Why is this route being generated and how can we avoid it?

• Through OpenVPN we route the VPN segments 192.168.30.0/24 and 192.168.60.0/24
• For the OpenVPN tunnel we use the segment 10.100.9.0/24
• And the local segment of the Pfsense is 10.0.0.0/16

Thank you very much for the help.

Qualoom 0

Finally, the problem was that this IP is from an NDS server (it is a DC) that is delivered by DHCP to Pfsense and it creates the route as local, although it is on the other side of the VPN tunnel.
We have configured the DNS of the manual Pfsense and we have not added that server and the problem has been fixed.