Lost connectivity from LAN side (pfsense) to some OpenVPN clients

rafaurl

Hi! pfsense lan ip is 192.168.100.1/24 and I have configured openvpn as server (10.10.0.1/24) for sixty clients connected full time. Openvpn clients connects fine and I can ping from a computer in lan side to any openvpn client (eg: in 192.168.100.20, Ping to 10.10.0.50 reply ok).

The problem is that, from time to time, when I ping to some of the openvpn clients, it gives me timeout (only some clients, others works fine at the same time). However, the same ping reply ok from pfsense shell to the same openvpn client ip. If I restart openvpn client service, ping reply ok after reconnecting. I can't figure out what's happening. Anyone has a clue?

Thanks a million in advance.

bellera

pfSense version?
OS client version?
OpenVPN client version?
Do you have a LAN rule permitting all traffic to the whole tunneling network (policy routing)?
Are you sure that clients aren't using your subnets for their local network?
Have the affected clients more than a NIC?
Are allways the same clients?
Do you see any message at OpenVPN logs (server & affected clients)?
Are you using tun or tap?
Are you using tcp or udp?
Do you see anything at your pfSense firewall log?