OpenVPN No LAN Access using PIA
-
But in order to setup pfsense this way I would still need two public IP addresses, correct?
No, the OpenVPN server will be listening on the public WAN IP, port 1194 by default (you can choose a different port number if you like). Set it up the same as any ordinary "Road Warrior" OpenVPN server. Then you can connect home by OpenVPN from anywhere (well, anywhere with Internet :) ).
-
But in order to setup pfsense this way I would still need two public IP addresses, correct?
No, the OpenVPN server will be listening on the public WAN IP, port 1194 by default (you can choose a different port number if you like). Set it up the same as any ordinary "Road Warrior" OpenVPN server. Then you can connect home by OpenVPN from anywhere (well, anywhere with Internet :) ).
I guess I am still confused on how I can get Pfsense to run both PIA and my own openvpn server and still have all internet traffic go out of PIA with only one public IP. When using my openvpn server, how would my laptop be able to find the VPN connection coming from PIA since it would be coming from a different IP address and most likely a different port. I also still want to have access to my own LAN at home when I am on the VPN also.
-
You would connect in from OpenVPN client on your laptop, from anywhere on the internet to the OpenVPN server running on pfSense at home. The traffic from your laptop back home to your home network would not be going through PIA.
You can set your laptop-to-home OpenVPN connection to "redirect all traffic through the VPN". Then when you browse the internet from your laptop, that traffic will go from laptop to home pfense, then out of home pfSense to the internet by whatever way the rest of your home LAN gets out to the internet.
For that, you can have an OpenVPN client on pfSense connected to the OpenVPN server on PIA. And you can send all traffic through that.
So you pfSense would have an OpenVPN listening for connects from your remote laptop, and an OpenVPN client connecting out to PIA.