Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How do I allow pfSense to access WAN subnet?

    Scheduled Pinned Locked Moved L2/Switching/VLANs
    5 Posts 2 Posters 373 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      NetComrade
      last edited by

      My pfSense is on 10.0.50.x network in AWS.
      How do I let pfSense OpenVPN clients see the rest of 10.0.50.x network?

      V 1 Reply Last reply Reply Quote 0
      • V
        viragomann @NetComrade
        last edited by

        @NetComrade
        Normally with a pass rule on the OpenVPN interface which allows this destination or even any.

        However, is pfSense the default gateway on the VMs?
        If it isn't you have to configure the routing property.

        N 1 Reply Last reply Reply Quote 1
        • N
          NetComrade @viragomann
          last edited by

          @viragomannn
          Thanks for pointing to the right direction..

          Looks like I need a new subnet on AWS within the VPN for my other machines and set pfSense as default gateway.

          Will create another thread.

          V 1 Reply Last reply Reply Quote 0
          • V
            viragomann @NetComrade
            last edited by

            @NetComrade
            If pfSense isn"t the default gateway you can masquerade the traffic to the local subnet with an outbound NAT rule to get access.
            However, then the VMs only see the pfSense IP, not the VPN clients IP.

            N 1 Reply Last reply Reply Quote 1
            • N
              NetComrade @viragomann
              last edited by NetComrade

              @viragomann

              Thanks.. I followed the following and it made sense to me.
              Other than what's in the link I also allowed ANY/ANY access on private network interface
              https://yhf8377.medium.com/replace-aws-nat-gateway-with-pfsense-vm-5454066585c2

              all works

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.