Port forward a device, which is exclude from a whole network VPN setup through selective routing.

eliaselof · Jul 7, 2021, 9:16 PM

I followed Setting up PIA VPN on pfSense for your whole network and Configuring Selective Routing by Lawrence System (https://www.youtube.com/watch?v=ov-xddVpxhc). Almost everything worked as excepted. The only problem was that I could not get port forwarding to work, it worked perfectly fine before I dabbled with the “VPN stuff”. I.e., I want to have a server outside of the VPN part of the network, which I can access remotely.

My current firewall rules for WAN, which is working when VPN-client is not enabled.

Outbound NAT setup from the video, my setup looked the same before I reverted my pfSense config to one without a VPN-client enabled.

Firewall rule to exclude computer form VPN.

Thanks, in advance!
Best regards, Elias, a pfSense beginner.

viragomann · Jul 8, 2021, 3:30 PM

@eliaselof
If you have added policy routing rules as shown in the video, simply go into the OpenVN client settings and check "Don't pull routes".

eliaselof · Jul 8, 2021, 6:52 PM

@viragomann Thanks for the help! Everything works perfectly now!