Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    PFSense 2.0.1 OpenVPN routing problem

    OpenVPN
    2
    3
    3806
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      bemar last edited by

      Hello,

      I've configured a open vpn server (remote access with ssl/tls and user auth).
      Im trying to connect an windows 7 PC with the pfsense using the newest OpenVPN client (today downloaded).

      The connection itself seems to works. In the pfsense openvpn status page I can see the client/user connected.
      The OpenVPN Client on the win7 pc also reported a successfully connection.

      But I can't reach any server in the network.

      My Tunnel Network is 192.168.64.0/24 and the lan network (target side) is 192.168.62.0/24. This is also configured in the openvpn server.
      The lan network of the client pc is 192.168.0.0/24
      Additionaly I've added a push route to the advanced options (push "route 192.168.62.0 255.255.255.0" ) but didn't help.
      In the firewall in the openvpn tab I've create a (test) rule which allows everything (* in every column).

      After successfully connected to the pfsense I've tried a "tracert" on the windows 7 client pc to a server in the lan (i.e. 192.168.62.142) and the route went not through the tunnel into the target LAN. The route went directly into the internet.

      Then I've checked the routing table of the windows pc with "route print" and got the following result:

      
      Interface List
       44...00 ff 6f 35 26 e8 ......TAP-Win32 Adapter V9
       17...00 ff e4 88 ae 42 ......TeamViewer VPN Adapter
       10...00 1e 8c 1f 99 13 ......NVIDIA nForce Networking Controller
       21...08 00 27 00 c0 d7 ......VirtualBox Host-Only Ethernet Adapter
        1...........................Software Loopback Interface 1
       15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
       11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
       16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
       18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
       22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
      ===========================================================================
      
      IPv4 Route Table
      ===========================================================================
      Active Routes:
      Network Destination        Netmask          Gateway       Interface  Metric
                0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.103     20
              127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
              127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
        127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
            169.254.0.0      255.255.0.0         On-link    169.254.89.114    276
         169.254.89.114  255.255.255.255         On-link    169.254.89.114    276
        169.254.255.255  255.255.255.255         On-link    169.254.89.114    276
            192.168.0.0    255.255.255.0         On-link     192.168.0.103    276
          192.168.0.103  255.255.255.255         On-link     192.168.0.103    276
          192.168.0.255  255.255.255.255         On-link     192.168.0.103    276
           192.168.64.4  255.255.255.252         On-link      192.168.64.6    286
           192.168.64.6  255.255.255.255         On-link      192.168.64.6    286
           192.168.64.7  255.255.255.255         On-link      192.168.64.6    286
              224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
              224.0.0.0        240.0.0.0         On-link    169.254.89.114    276
              224.0.0.0        240.0.0.0         On-link     192.168.0.103    276
              224.0.0.0        240.0.0.0         On-link      192.168.64.6    286
        255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        255.255.255.255  255.255.255.255         On-link    169.254.89.114    276
        255.255.255.255  255.255.255.255         On-link     192.168.0.103    276
        255.255.255.255  255.255.255.255         On-link      192.168.64.6    286
      ===========================================================================
      

      So my question is: Where is the route to 192.168.62.x? Did I forget to configure something?

      Thx for any help

      Ben

      1 Reply Last reply Reply Quote 0
      • F
        focalguy last edited by

        On Windows 7 you need to start OpenVPN as administrator or it doesn't have the permissions to update the routing table of the PC.

        1 Reply Last reply Reply Quote 0
        • B
          bemar last edited by

          @focalguy:

          On Windows 7 you need to start OpenVPN as administrator or it doesn't have the permissions to update the routing table of the PC.

          That was the problem. Thank you very much. Everything works fine now.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy