OpenVPN ping on lan no response
-
Hello,
I'm on a project in pfsense firewall with connection via secure remote openvpn.
Openvpn server is configured, the certificates created, the user associated with the certificate, the port opening on openvpn WAN interface ….Before pfsense, there is a router / modem with an redirects port openvpn WAN interface of pfsense.
The TCP connection to the VPN from the internet is functional but not ping the hosts on the LAN, only the IP address of the interface Openvpn and LAN.
I think a problem of routing, NAT, firewall rules perhaps ....
I'm a little lost, its been several days since I read forums and tutorials. Thank you for your help.
Cordially.
-
What you're trying to do is not very well defined… is this a road warrior setup, site-to-site with pfsense on both ends, site-to-site with pfsense on one end and dd-wrt on the other, site-to-site with pfsense on one end and PC on the other running an openvpn client, are you trying to use pfsense as a client to connect to a vpn service?
Once we narrow down what you're trying to do... we need more info:
1. Network Map
2. Post server config
3. Post firewall settings from openvpn tab -
Hi,
Ty for reply, the type of the vpn connections is road warrior with pfsense openvpn serveur on one end and a pc client (windows & mac) with the last version of openvpn client on the other.
The final project is to connect in vpn for use a net share on a serveur in the LAN or in the DMZ.
serveur:
lan 192.168.10.0/24 interface 192.168.10.250
dmz 192.168.2.0/24 interface 192.168.2.1
wan 192.168.0.0/24 interface 192.168.0.65
gateway 192.168.0.254client:
lan 192.168.1.0/24
gateway 192.168.1.1vpn:
10.0.8.0/24
interface 10.0.8.1client vpn n°1:
interface 10.0.8.6
gateway 10.0.8.5I read a post on a case in the openvpn serveur config. "All trafic client….." all the clients connections go on the vpn.
What you think about that?
Excuse me for my litle english...Thank you.
Cordialy. -
Openvpn serveur config :
dev ovpns1
dev-type tun
dev-node /dev/tun1
writepid /var/run/openvpn_server1.pid
#user nobody
#group nobody
script-security 3
daemon
keepalive 10 60
ping-timer-rem
persist-tun
persist-key
proto tcp-server
cipher BF-CBC
up /usr/local/sbin/ovpn-linkup
down /usr/local/sbin/ovpn-linkdown
local 192.168.0.65
tls-server
server 10.0.8.0 255.255.255.0
client-config-dir /var/etc/openvpn-csc
username-as-common-name
auth-user-pass-verify /var/etc/openvpn/server1.php via-env
tls-verify /var/etc/openvpn/server1.tls-verify.php
lport 1194
management /var/etc/openvpn/server1.sock unix
max-clients 10
push "route 192.168.10.0 255.255.255.0"
push "dhcp-option DNS 8.8.8.8"
ca /var/etc/openvpn/server1.ca
cert /var/etc/openvpn/server1.cert
key /var/etc/openvpn/server1.key
dh /etc/dh-parameters.1024
tls-auth /var/etc/openvpn/server1.tls-auth 0
comp-lzo
persist-remote-ip
float
push "route 192.168.10.0 255.255.255.0"Thank you
-
Its ok thank you for your help.
Cordialy.
-
"Its ok" meaning you resolved the issue?