OPENVPN + IPSEC with IPSEC Gateway



  • Hi,

    I have this scenario:

    Home                 
    Workstation 1:192.168.1.5
    Network: 192.168.1.0/24

    OPENVPN
    Network:192.168.2.0/24

    PFSense
    Network (LAN): 192.168.3.0/24
    Gateway (LAN): 192.168.3.254
    Gateway (WAN): public IP

    Router (Remote Network)
    Gateway (WAN): public IP

    Connections between PFSense and Router work. So IPSec configuration is correct.

    Connections between OPENVPN and PFsense Network (LAN) work. So OPENVPN configuration is correct.

    But, when i try to do "ping" to a remote workstation in the Remote Network (Router with IPsec configurated) dont work.

    What do i have to do? The problem is simple: my workstation in the OPENVPN doesnt see the remote network's public ip, and this is because the gateway is my home router, but how can i change this gateway to PFSense Gateway?

    Thanks!!!


  • Rebel Alliance Developer Netgate

    You need to make sure you do three things:

    1. Push a route to the remote IPsec subnet to the OpenVPN clients.
    2. Add phase 2 entries to both ends of the IPsec tunnel that cover the OpenVPN clients
    3. Make sure your OpenVPN and IPsec rules allow traffic between those subnets


Log in to reply