Site 2 User VPN
I am new to pfSense. Literally do not know where to look for the details. So, help please….. (even if it is a link)
I am trying to setup OpenVPN from my pfSense box. Described in WebGUI of pfSense. WAN is static IP and LAN is Range of 192.168.1.99/24. (Protocol - TCP, Local Port - 1120, Tunnel Enabled, Local Network - 192.168.1.0/24 and Remote address - 192.168.2.0/24 and It is PKI with all certificates in position). When I am trying to connect from my VPN client to the Server, I am able to do so..... getting IP assigned from the Server..... but not able to ping / browse / do anything from my client to the LAN clients of the device.
Any help ? Any kind of help will be highly appreciated.
Thanks and Regards
Mani M N S
sullrich last edited by
Hi, Thanks for that reply.
I am actually writing a program in Linux / perl / php in which I am dynamically updating the pfsense in CF Card. While creating dynamically, I am not able to do certain things. Somehow, crossed several hurdles and ended up in a new trouble.
Now, I am changing the nsCertType = server in openssl.cnf file. Got the client certificate and Server certificate files generated. In client.ovpn file, I included ns-cert-type server. It is not working.
Now when I comment the nsCertType = server in openssl.cnf gile. Got the client certificate and Server certificate files generated. In client.ovpn file, I removed ns-cert-type server. It is working. Able to ping, Browse, see the shared folders in the Network.
What is that going wrong…. absolutely no idea. While the client is coming up, I get the VERIFY OK message. TCP trying to ping to Server. TCP/UDP Socket closed. SIGUSR1 connection reset....... blah blah..... getting frustrated with the same message.... tried all possible search engine without much details.
Where am I going wrong ? Any clues ?
Hotel last edited by
What address pool are you using on the server? I hope its not 192.168.1.99/24 because this is entirely on the same subnet as your LAN interface.
I am trying to setup OpenVPN from my pfSense box. Described in WebGUI of pfSense.
My Question is Why you need to specify
Local Network as 192.168.1.0/ <any subnet="">–-- > Why do pfSense force 0 as the last portion of IP.
I need to give something like 192.168.1.99/29 …. Why is it not possible ? Anyone can help..... ?
Thanks and Regards
Mani M N S</any>
Again this also says "0" as the last portion of IP which I do not want…...
jeroen234 last edited by
make it 192.168.1.96/29
this will give you a network with 192.168.1.97 till 192.168.1.103 and 192.168.1.103 as broadcastadres