Dual WAN with openVPN
-
Hello!
I have set upp a pfsense with dual wan for balance which works greate.
But I can only connect with openvpn to WAN1.Have tried a lot of settings:
- One openvpn server for each WAN
- Openvpn server on LAN interface and one portforward for each WAN interface (WAN1 only woorks with this settings)
- All firewall rules for WAN1 use Gateway_WAN1 and for WAN2 use Gateway_WAN2
I get this error when i try connect to the openvpn through WAN2 ip: TCP/UDP: Incoming packet rejected from WAN1_IP:1194[2], expected peer address: WAN2_IP:1194 (allow this incoming source address/port by removing –remote or adding --float)
-
I'm experiencing exactly the same problem with multi-wan and OpenVPN on udp. It seems that the reply-to rules doesn't work with traffic to localhost (openvpn server) on UDP. For me it works fine with TCP, but for some reason on UDP the openvpn server will always respond through the default gateway, hence why you're getting responses from the wrong IP :)
This is with OpenVPN server interface set to "any"
Try switching default gateway, and see if that changes which connection you can connect to it on (it does for me). Alternatively you can just run OpenVPN on TCP, but as you know that causes more overhead. -
Same problem here except with L2TP passthrough. Works on WAN1 but not OPT1 (Wan2). Any suggestions?
-
I have this problem too.
Please anyone help with this issue -
It works now!
The main problem was my ISP having a firewall on (4g Telenor). :oI run on this settings:
- OpenVPN Server on Lan interface
- 2 Port Forward one for each WAN interface
- GatewayGroup in the firewall roule in OpenVPN tab.
If Proto Src. addr Src. ports Dest. addr Dest. ports NAT IP NAT Ports Description
OPT1 TCP/UDP * * OPT1 address 1194 (OpenVPN) IP_Pfsense 1194 (OpenVPN)
WAN TCP/UDP * * WAN address 1194 (OpenVPN) IP_Pfsense 1194 (OpenVPN)