SSL VPN
-
We have reconfigured our network to include a SONICWALL TZ-215 for our firewall and forwarded port 1194 & Port 500 to PFSense for SSL (OpenVPN) . Since we didn't want to pay for GLobalVPN licensing through Sonicwall (that's what PFSense is for). Now we cant get connected (was working before TZ-215). Sonicwall is configured for LAN any/any. Any ideas?
Network MAP: http://imgur.com/hvSgEYS
-
Is your pfsense NATed behind sonic wall with a private IP being assigned to the pfsense WAN?
-
yes, and sorry we are using OpenVPN Server
-
Cool - In pfsense Interfaces > WAN at the bottom of the page, have you unchecked the "Block private networks"?
If not, please do that, then go to status > filter reload.
Maybe even reboot it.
Then give it a try.
-
They are not. Here is a pic of my config's
http://imgur.com/a/XIFh1Heres some insight:
It was working (when i had both interfaces ATT & TW Telcom) plugged into it. Now it just has the WAN plugged in. The SonicWall handles all In/Out (as viewed on chart above)
-
I alsways use the local DB for for access verification, not some other server.
I noticed you are not using the local DB.
-
You are running the server on the LAN interface. You haven't shown which interface is connected to the Sonicwall but if that is also on LAN it's unlikely the pfSense box has a route back to the client.
If the Sonicwall box is on the pfSense WAN (it probably should be) why aren't you running the openvpn server on WAN?Steve
-
This post is deleted!
