No routing to LAN2,LAN3...

vincentjanv

Hi,

I'm running 2.6.0 in a 2 cluster setup (which works great). There are 4 LAN interfaces and 1 WAN interface. I also setup a OpenVPN server (via the wizard) to allow local access to the resources behind the LAN.

It seems there is a routing issue somewhere. First of all: the firewall rules are all wide open for testing. Also, the IPv4 Local network(s) are correctly mentioned (10.1.1.0/24, 10.2.1.0/24,10.3.1.0/24,10.4.1.0/24 in the OpenVPN server because the routes are correctly pushed to each VPN client).

I cannot traceroute a device on any of the LAN's via any other interface except 'any' (via GUI). If I am on a VPN connection, it goes correctly to 10.10.0.1 as the first hop but it gets stuck afterwards.

If i traceroute via the console shell of the pfSense server, it also works perfectly. All devices on these LANs can ping each other.

The routing tables show entries as expected for each LAN network.

Anyone has an idea? This is the first time I encouter something like this...

viragomann

@vincentjanv
Consider that the traceroute UDP packets may be blocked as mentioned in the GUI. Better to use ICMP for testing.

Also possibly your destination devices block access from outside of the subnet they reside by their own firewall. That is the default behavior of Windows and most Linux machines.
So maybe you have to allow access from outside by the devices firewalls.