Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pfSense OpenVPN cannot reach the entire LAN subnet

    Scheduled Pinned Locked Moved General pfSense Questions
    2 Posts 2 Posters 29 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F Offline
      fti-fred
      last edited by

      I'm using pfSense 2.8 in a Proxmox VM, behind a Fortigate cluster. I'm experiencing one way communication with some IP addresses on the pfSense LAN network.

      I can reach 13 of 30 IP addresses on the LAN subnet from the OpenVPN client. All types of traffic to those 13 address are functioning fine.

      If I capture packets in pfSense I can see ICMP echo request from my OpenVPN client IP, but no replies. If I capture packets at the Fortigate, I do not see the echo requests coming from pfSense.

      Odd

      1 Reply Last reply Reply Quote 0
      • stephenw10S Offline
        stephenw10 Netgate Administrator
        last edited by

        I wouldn't expect to see any traffic through the Fortigate except the OpenVPN encrypted packets if pfSense is behind it in Proxmox. Assuming the pfSense LAN and clients in it are also in Proxmox?

        The most common reason to see something like that is that the LAN hosts are blocking traffic from the OpenVPN subnet.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.