Issues with Road Warrior laptops on LAN since upgrading to 2.5
We have 30 or so windows laptops configured with SSL/No User Auth OpenVPN running as a service to process domain logins and give the users an "In the office" experience. It has worked pretty much flawlessly for several years until we upgraded to pfsense 2.51 from 2.4.4.
The issue is when these laptops are brought into the office and connect to the LAN (10.1.0.0/20) or Wifi network (10.10.100.0/24) Windows is unable to reach any of our local servers. As soon as we disable the openvpn service or connect from an outside network everything functions normally. It is only an issue for users in the office.
I am thinking there is a Windows routing issue but this was not an issue until we upgraded pfsense. I tried setting push "redirect-gateway autolocal def1" to no avail.
I tried setting the route metric to no avail.
I then tried to simply add a block rule so open VPN would not be able to connect from the internal networks but I was unsuccessful.
Any input is appreciated as my brain is hurting at this point.
Update: I needed a state reset for the block rules to work. I am now blocking connections to ovpn from the lan so that is a solid workaround. I still would like to know what changed.