4. OpenVPN tunnel seems to break transparent proxy rule

OpenVPN tunnel seems to break transparent proxy rule

  • V

    Hi,

    I've a pfsense box doing a home router / firewall /squid + squid guard using transparent proxy rules.

    In addition to that I've set up an openvpn tunnel to a dedicated server on the internet. So my pfsense box is an openvpn client.

    When bringing the openvpn tunnel up I noticed that the proxy did not work anymore, indeed the automatic rdr rules get wiped out of the pf ruleset as shown below on the rules.debug files before and after the restart of the client.

    [2.1-RELEASE][root@pfsense]/tmp(46): diff rules.debug.ovpn rules.debug.tpok
    83a84,87

    Setup Squid proxy redirect

    rdr on bge1 proto tcp from any to !(bge1) port 80 -> 127.0.0.1 port 3128

    246a251,254

    Setup squid pass rules for proxy

    pass in quick on bge1 proto tcp from any to !(bge1) port 80 flags S/SA keep state
    pass in quick on bge1 proto tcp from any to !(bge1) port 3128 flags S/SA keep state

    After that I need to go back to squid setup and "save" to get back my rdr rules.

    Should I file a bug report or set thing up differently ?

    Vincent.

    0
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy