Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenVPN clients cannot reach hosts through site2site VPN

    OpenVPN
    2
    3
    456
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H
      helge000
      last edited by

      Hello,

      I have two pfSense instances connected through a site2site WireGuard tunnel. There are no issues with the tunnel and it is working fine.

      However, OpenVPN clients, while able to reach the local part of the network, cannot connect to anything through the WireGuard Tunnel. I checked allowed addresses there and even tinkered with outbound NAT for OpenVPN.

      OpenVPN clients are configured with "Redirect Gateway". Traceroute stops at the first hop (which is the OpenVPN gateway address from the server).

      I am at a loss...

      J 1 Reply Last reply Reply Quote 0
      • J
        Jarhead @helge000
        last edited by

        @helge000 Did you add the OpenVPN tunnel network to Wireguards allowed IP's?

        H 1 Reply Last reply Reply Quote 0
        • H
          helge000 @Jarhead
          last edited by

          @jarhead , thanks, I just double checked again: On site B I have the site A openvpn client net allowed in the peer.

          In the mean time I did set up an OpenVPN server on site B, put the openvpn client net of it in the WireGuard allowed list of the peer in site A. From Site B's OpenVPN clients, I can connect through the tunnel... site A is not working.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.