Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenVPN Access Server as Public Cloud-to-Private LAN Forwarder with pfSense?

    Scheduled Pinned Locked Moved OpenVPN
    1 Posts 1 Posters 509 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • zoshZ
      zosh
      last edited by

      Hi,

      We need to provide access to an on-prem CRM portal for a 3rd-party leads generation company. We use a Netgate 1537 pfSense+ appliance, all our remote employees use OpenVPN and it works great for us. However, we can't expect outside independent contractors to download an unfamiliar VPN client for access to our CRM.

      We've started hybridizing a bit with DigitalOcean cloud VMs. I'm thinking it should be possible to provision a cloud-based OpenVPN Access Server that serves as some kind of site-to-site connection into our private LAN through our on-prem pfSense firewall using a separate OpenVPN config profile. Has anyone done this?

      I could issue certificates for each of the independent contractors from the leads generation company to securely connect to the cloud OVPN-AS. When they hit our firewall via some site-to-site cxn, I can park them on a VLAN which is only allowed to access the locked-down CRM portal I setup just for them.

      This should be a good way to allow private web app access to a group of authorized individuals over the Web without the use of VPNs or DMZ proxies, right?? Has anyone implemented this and can provide any advice on it?? Any sentiments would be highly appreciated, thanks!!

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.