Quickie fix - I Can access local network but I can't access internet.

broknbottle · Feb 12, 2010, 12:14 AM

I have my pfSense / OpenVPN box setup and I am able to access it using my mac+viscosity (great app btw) but I recently put the (push "dhcp-option DNS 10.10.x.x";push "redirect-gateway def1") in my custom options. Now I am able to access the local network that's behind the VPN but I am not able to access the internet anymore, and I am sure it has to do with a firewall rule or forwarding a port but I am not 100% what I am supposed to edit and what parameters are needed. Also when I use the push "dhcp-option DNS x.x.x.x", does that bypass the network DNS that I am connection from and use my DNS? which in my case is OpenDNS. Thanks and I appreciate any help / insight!

jimp · Feb 12, 2010, 2:03 AM

On the pfSense box, switch to Advanced Outbound NAT and add a rule that will NAT your remote OpenVPN IPs to your box's WAN address. That should get it going.

broknbottle · Feb 12, 2010, 8:59 AM

Ok I am just posting to confirm and making sure that I did this correctly.

GruensFroeschli · Feb 12, 2010, 7:50 AM

Your destination should be any. (The internet is any ;) )

You need at least another rule with as source your LAN. Otherwise you can reach the internet from the OpenVPN subnet but no longer from the LAN.
An alternative would be to change the source to any as well, but i don't know if you want to allow that.

AhnHEL · Feb 12, 2010, 8:41 AM

Should look like this when you're done.

![Screen shot 2010-02-12 at 3.35.42 AM.png_thumb](/public/imported_attachments/1/Screen shot 2010-02-12 at 3.35.42 AM.png_thumb)
![Screen shot 2010-02-12 at 3.35.42 AM.png](/public/imported_attachments/1/Screen shot 2010-02-12 at 3.35.42 AM.png)