• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Advertise OpenVPN routing table via OSPF

Scheduled Pinned Locked Moved FRR
1 Posts 1 Posters 440 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • M
    MattB765
    last edited by MattB765 Mar 17, 2023, 12:11 PM Mar 17, 2023, 12:10 PM

    Hi I posted this before but I think it was too generic a question, I now have pfSense/FRR working between the Fortinet but haven't quite got what I need.

    I have a pfSense that we use for connecting multiple customers via OpenVPN.

    The networks we assign to customers are in the range 172.29.96.0/20 and this is set in the "Remote Network" setting of the OpenVPN. Because we have multiple connections, we use certificate based Client Specific Overrides to select the destination within OpenVPN.

    The problem I have is that I would like to distribute these individual /29 networks using FRR/OSPF but the only route that gets placed in the kernel routing table is the supernet of 172.29.96.0/20.

    I've tried setting redistribute kernel and connected but this hasn't helped.

    Is there a way to get OpenVPN/FRR to advertise these individual routes?

    Thanks,

    Current configuration:
    !
    frr version 7.5.1
    frr defaults traditional
    hostname router-a
    service integrated-vtysh-config
    !
    ip router-id 10.1.4
    ip router-id 10.1.40.172
    !
    interface ovpns1
    description "ospfd: OpenVPN"
    ip ospf area 0.0.0.0
    ip ospf network point-to-multipoint
    !
    interface vmx0
    description "ospfd: WAN OSPF"
    ip ospf area 0.0.0.0
    !
    router ospf
    ospf router-id 127.1.1.1
    redistribute kernel
    redistribute connected
    passive-interface ovpns1
    !
    
    1 Reply Last reply Reply Quote 0
    1 out of 1
    • First post
      1/1
      Last post
    Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
      This community forum collects and processes your personal information.
      consent.not_received