OpenVPN, the pfSense server does not reach the Client LAN



  • Can anyone help me with this problem?

    PfSense server:
    dev tun
    IP Tunnel pfSense: 10.1.1.1
    Under pfSense LAN: 192.168.2.0/24

    Client OpenVPN (WINDOWS):
    client
    dev tun
    dev-node OpenVPN
    script-security 3
    proto udp
    remote x.x.x.x 1194
    keepalive 10 60
    resolv-retry infinite
    nobind
    persist-key
    persist-tun
    ca xx.crt
    cert xx.crt
    key xx.key
    tls-auth ta.key 1
    cipher AES-128-CBC
    ns-cert-type server
    comp-lzo
    pull
    verb 3

    The problem is that the client can not ping both the IP address of the tunnel is under the pfSense LAN. From under pfSense LAN instead I can only ping the client ip tunnel but not the LAN. on the server I added the command route 192.168.88.0 255.255.255.0 but does not work ..

    thanks



  • Post your server config.



  • Thank for you reply.

    This is my server config:

    dev ovpns1
    dev-type tun
    dev-node /dev/tun1
    writepid /var/run/openvpn_server1.pid
    #user nobody
    #group nobody
    script-security 3
    daemon
    keepalive 10 60
    ping-timer-rem
    persist-tun
    persist-key
    proto udp
    cipher AES-128-CBC
    up /usr/local/sbin/ovpn-linkup
    down /usr/local/sbin/ovpn-linkdown
    local x.x.x.x
    tls-server
    server 10.1.1.0 255.255.255.0
    client-config-dir /var/etc/openvpn-csc
    tls-verify /var/etc/openvpn/server1.tls-verify.php
    lport 1194
    management /var/etc/openvpn/server1.sock unix
    push "route 192.168.2.0 255.255.255.0"
    ca /var/etc/openvpn/server1.ca
    cert /var/etc/openvpn/server1.cert
    key /var/etc/openvpn/server1.key
    dh /etc/dh-parameters.1024
    tls-auth /var/etc/openvpn/server1.tls-auth 0
    comp-lzo
    route 192.168.88.0 255.255.255.0 10.1.1.2


Locked