Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    L2tp clients can't reach LAN devices

    Scheduled Pinned Locked Moved IPsec
    1 Posts 1 Posters 391 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      cavigliera
      last edited by

      Hallo,

      i just installed a secondary firewall in a customer newtwork.

      The Main firewall and Pfsense are on the same LAN subnet with ip:

      192.168.20.249 -> SONICWALL
      192.168.20.5 -> PFsense

      Everyone has it's own dedicated wan connection.

      All the LAN clients use the SONICWALL as default gateway.

      Then i configured an L2TP tunnel and my Windows 10 test client can successfully connect to it.

      By my client i can ping the LAN ip of the PFsense, but the rest of the lan subnet is unreachable.

      In the PFsense Diagnostic -> ping, I checked that the pfsense can reach all the client's i need in the subnet without problems, while the VPN client can only ping the ip address of the pfsense (192.168.20.5).

      This is my L2TP server settings.
      Cattura01.PNG

      FASE 1
      Cattura02.PNG

      FASE 2
      cattura03.PNG

      Advanced settings
      Cattura04.PNG

      Mobile clients configuration
      Cattura05.PNG

      Outbound nat rules
      Cattura06.PNG

      L2TP Firewall rules
      Cattura08.PNG

      IPsec Firewall rules
      Cattura09.PNG

      Any suggestion?

      Thanks a lot,

      Giacomo.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.