Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Openvpn client dual wan

    Scheduled Pinned Locked Moved OpenVPN
    1 Posts 1 Posters 1.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mic912
      last edited by

      Hi,

      I've a pfsense 1.2.3 with 1 WAN

      LAN (SIS0): 192.168.0.1/24
      WAN (SIS1): 192.168.2.1/24

      In pfsense i've configured a openvpclient with tun0 and i added OPENVPNCLIENT
      interface on Tun0 in (menu Interfaces/assigned)

      In OPENVPNCLIENT interface i've set up

      • Enabled is checked
      • Type DHCP
      • BRIDGE none
        My openvclient gets some routes from openvpn server like "push 192.168.1.0/24"

      In system-advanced, i've checked "Disable all auto-added VPN rules".

      LAN clients work fine with this configuration. All packet to 192.168.1.xxx are pushed into OPENVPNCLIENT.

      Now i need to create a failover with a second WAN2 in (SIS2). Failover needs to work
      default on WAN2. When WAN2 switch offline, WAN1 needs to became default route.

      So I added the WAN2 interface and i've configured Services-LoadBalance-Failover(*).
      In system-advanced i've checked

      • Use sticky connections
        In firewall rules, I've add default rules from lan network to any with failover(*) gateway.

      My problems are

      • With WAN2 and WAN1 online, the default route is always WAN1. If WAN1 go down, WAN2 don't works.
      • the openvpn client don't work. All clients packets to 192.168.1.xxx
        go out in WAN1 but not in openvpn tunnel.

      The strange thing is if I delete openvpnclient configuration failover works fine.

      It's a metric problem or other?

      Thank you
      mic

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.