OpenVpn client ip arp issues at destination.



  • I have set up a functioning open vpn connection.
    I can ping the gateway on that subnet.
    When i try to contact the LAN subnet the traffic is routed through, and i can see it exiting the LAN interface, however, the destination host keeps sending arp requests for the vpn clients mac address, and the pfsense box does not respond appropriately.
    Here is a example:
    03:23:45.808512 ARP, Request who-has 10.103.103.6 tell 10.103.0.8, length 46
    03:23:46.801360 IP 10.103.103.6 > 10.103.0.8: ICMP echo request, id 65150, seq 4826, length 64
    03:23:46.808540 ARP, Request who-has 10.103.103.6 tell 10.103.0.8, length 46
    03:23:47.256334 STP 802.1s, Rapid STP, CIST Flags [Learn, Forward, Agreement]
    03:23:47.803066 IP 10.103.103.6 > 10.103.0.8: ICMP echo request, id 65150, seq 4827, length 64
    03:23:47.808527 ARP, Request who-has 10.103.103.6 tell 10.103.0.8, length 46

    Any ideas whats going on?
    Any advice would be much appreciated!



  • What is the subnet on this client? What should it be?
    If you're trying to connect via a routed network it is probably something smaller than a /16 (is it a /24?)
    however since the client tries to resolve locally this means it's subnet is set to /16 or bigger.



  • Fixed it by enabling arp proxing for the the /24 vpn subnet.


Locked