Site 2 User VPN



  • I am new to pfSense. Literally do not know where to look for the details. So, help please….. (even if it is a link)

    I am trying to setup OpenVPN from my pfSense box. Described in WebGUI of pfSense. WAN is static IP and LAN is Range of 192.168.1.99/24. (Protocol - TCP, Local Port - 1120, Tunnel Enabled, Local Network - 192.168.1.0/24 and Remote address - 192.168.2.0/24 and It is PKI with all certificates in position). When I am trying to connect from my VPN client to the Server, I am able to do so..... getting IP assigned from the Server..... but not able to ping / browse / do anything from my client to the LAN clients of the device.

    Any help ? Any kind of help will be highly appreciated.

    Thanks and Regards
    Mani M N S





  • Hi, Thanks for that reply.

    I am actually writing a program in Linux / perl / php in which I am dynamically updating the pfsense in CF Card. While creating dynamically, I am not able to do certain things.  Somehow, crossed several hurdles and ended up in a new trouble.

    Now, I am changing the nsCertType = server in openssl.cnf file. Got the client certificate and Server certificate files generated. In client.ovpn file, I included ns-cert-type server. It is not working.

    Now when I comment the nsCertType = server in openssl.cnf gile. Got the client certificate and Server certificate files generated. In client.ovpn file, I removed ns-cert-type server. It is working. Able to ping, Browse, see the shared folders in the Network.

    What is that going wrong…. absolutely no idea.  While the client is coming up, I get the VERIFY OK message. TCP trying to ping to Server. TCP/UDP Socket closed. SIGUSR1 connection reset....... blah blah..... getting frustrated with the same message.... tried all possible search engine without much details.

    Where am I going wrong ? Any clues ?



  • What address pool are you using on the server? I hope its not 192.168.1.99/24 because this is entirely on the same subnet as your LAN interface.



  • I am trying to setup OpenVPN from my pfSense box. Described in WebGUI of pfSense.

    My Question is Why you need to specify

    Local Network as 192.168.1.0/ <any subnet="">–-- > Why do pfSense force 0 as the last portion of IP.

    I need to give something like 192.168.1.99/29 …. Why is it not possible ? Anyone can help..... ?

    Thanks and Regards
    Mani M N S</any>



  • @sullrich:

    http://doc.pfsense.org/index.php/Setting_up_OpenVPN_with_pfSense

    Again this also says "0" as the last portion of IP which I do not want…...



  • make it 192.168.1.96/29
    this will give you a network with 192.168.1.97 till 192.168.1.103 and 192.168.1.103 as broadcastadres



  • NOT Working


Log in to reply