pfSense HA, connected to VPN can't access 2nd Firewall?
-
I have a dual pfSense HA setup using CARP. One thing that I noticed is that when I am connected to the OpenVPN service, I am unable to Ping or even access the 2nd Firewall by Internal IP address. The OpenVPN firewall uses a 10.0.3.x network, and I am wondering if there is some strangeness with how the pfSense HA works that the 2nd firewall potentially see's 10.0.3.x locally even though it isn't the active firewall.
Is there some special configuration I need to take into account here so that I can access both Firewalls when connected to OpenVPN?
I posted this in the main as I'm not sure if it's related to OpenVPN related or something else going on with routing. Any suggestions here would be appreciated.
My LAN Looks similar to this:
pfSense-Firewall-1
ifgb0: WAN IP Address (CARP)
ifgb1: 10.0.2.1 (LAN Network)
ifgb2: 172.16.1.1 (sync network)OpenVPN Tunnel Network: 10.0.3.X
pfSense-Firewall-2
ifgb0: WAN IP Address (CARP)
ifgb1: 10.0.2.2
ifgb3: 172.16.1.2 (sync network)So if I'm connected to IP 10.0.3.X while on OpenVPN connected to Firewall-1, i can't ping 10.0.2.2 from OpenVPN connection, i can ping it directly from the firewall shell.
-
-
@viragomann Thanks this completely resolved my issue.