Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    port forward to remote network openvpn

    Scheduled Pinned Locked Moved Routing and Multi WAN
    2 Posts 2 Posters 494 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H
      HellsChicken
      last edited by HellsChicken

      Hi all,

      I have a homelab and a production environment, and these two are linked together by an OpenVPN site-to-site connection. I have routes setup so each environment can reach each other.

      This is running for a while now without problems. but I want to open a few ports on my production environment and forward them to my homelab environment.

      Home situation.png

      The NAT rule (IP's are different of course :) ):

      95ecd913-6a73-4f6f-8d6a-4db919768f01-afbeelding.png

      The situation works when I add the following option to the OpenVPN client in the homelab pfsense box. However, all traffic from the homelab runs through the site-to-site VPN, and that's not preffered.

      redirect-gateway def1;

      I'm not sure what to do to fix this at the moment and what diagnostics I can run. Does anyone has any suggestions?

      V 1 Reply Last reply Reply Quote 0
      • V
        viragomann @HellsChicken
        last edited by

        @hellschicken
        On the homelab pfSense assign an interface to the respective OpenVPN instance, if you didn't already.
        Then you will get a firewall rule tab for this interface. Add a rule for allowing the access from the remote site to this interface.
        Remove the rules from the OpenVPN tab or at least modify existing rules so that they are not applied to the incoming traffic from the production site.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.