port forward to remote network openvpn
-
Hi all,
I have a homelab and a production environment, and these two are linked together by an OpenVPN site-to-site connection. I have routes setup so each environment can reach each other.
This is running for a while now without problems. but I want to open a few ports on my production environment and forward them to my homelab environment.
The NAT rule (IP's are different of course :) ):
The situation works when I add the following option to the OpenVPN client in the homelab pfsense box. However, all traffic from the homelab runs through the site-to-site VPN, and that's not preffered.
redirect-gateway def1;I'm not sure what to do to fix this at the moment and what diagnostics I can run. Does anyone has any suggestions?
-
@hellschicken
On the homelab pfSense assign an interface to the respective OpenVPN instance, if you didn't already.
Then you will get a firewall rule tab for this interface. Add a rule for allowing the access from the remote site to this interface.
Remove the rules from the OpenVPN tab or at least modify existing rules so that they are not applied to the incoming traffic from the production site.