Site2Site VPN

MyastanPatrin

Hello all, I have a OpenVPN server running on a Raspberry Pi via PiVPN. I can use it on my phone no problem and I can connect to it as well as access remote machines on the VPN network. In pfSense I can also get an VPN IP but I cannot access the remote machines on the VPN network on my LAN connection.

Is there a newbie fatality error I'm no seeing?

Thanks in advance

viragomann

@myastanpatrin
So you're using an access server for a site to site VPN.
A site to site you normally need routes on both sites for proper working. Though the server can push the route to the client, pushing the other is not possible. So at the remote site you would need a route for your network pointing to the clients IP.
This can be done by something like client specific override on an access server.

But I assume, you manage both sites and the connection is for your own purposes only. So there is also an easier way to get it work.

Assign an interface to the OpenVPN client instance in Interface > Assignments. Activate it and set a name if desired.
Then add a rule in Firewall > NAT > Outbound for masquerading packets going across the VPN.
If the outbound NAT is still in automatic mode (default) switch to hybrid first.
Now add a rule like this:
interface: that one you've assigned to the VPN before
source: your local networks
destination: remote networks
translation: interface address

So now pfSense behaves as any other client and accessing the remote network should work.

MyastanPatrin

@viragomann It worked!!!!

You Rock!!

Thank you very much!!!