Including multiple machines on the client side when using a routed VPN
-
Hi all
I have a new project i am working on and need some assistance.
I have been tasked with making a few remote routers and the devices connected to them available for remote view,
The Routers use Mobile Sims which work wth CGNat
I have a PFsense VM with Openvpn
I have successfully connected my remote router/gateway to this openvpn and am able to browse the gateway successfully,Now i need to make the camera which is connected to the gateway available on my vpn network.
i have foudn this guide which appears to do what i want.
https://openvpn.net/community-resources/how-to/#expanding-the-scope-of-the-vpn-to-include-additional-machines-on-either-the-client-or-server-subnet
But it appears to be written with a windows or linux machine with openvpn added nt my pfsense setup.
I need a guide showing how to do this on my pfsense VM or some advise on how to do this.
thanking you in advance
-
@chayne said in Including multiple machines on the client side when using a routed VPN:
The Routers use Mobile Sims which work wth CGNat
I have a PFsense VM with OpenvpnAre both, the pfSense and the remote router the default gateways in their respective local network?
Does the cam have a gateway option and is it set correctly?
-
@viragomann said in Including multiple machines on the client side when using a routed VPN:
Does the cam have a gateway option and is it set correctly?
Hi Viragomann
Thank you for the prompt reply.The steps i have taken so far are as follows
the pfsense VM was being used as a VPN server to access remote Dev and Web Servers.
I have created a new openvpn server on the pfsense and set it to be cert auth onlyMy User openvpn network is 172.28.225.0/24 i have this to only use the VPN for 3 subnets the RAK subnet included
My Gateway/RAK openvpn network is 172.28.226.0/24 I have this set to force all traffice through vpn
my remote gateway RAK network is 192.168.230.0/24 (the camera has one of these address)When connecting as a user to the 172.28.225.0 network i can ping and browse the gateway/RAK on the 172.28.226.0 network
The Camera receives DHCP from the Gateway/RAK
Its IP is 192.168.230.245How can i allow a user on the 172.28.225.0 range talk to the 192.168.230.0 range via the 172.28.226.0 tunnel
-
I managed to get it all working
using a combination of Client specific overrides and natting on the router