VPN Pivoting
-
Hello all,
I'm trying to do VPN pivoting using PfSense along with OpenVPN so I can use tools "like" zenmap to scan the VPN client's remote sub-net. I read that its possible using iroutes and push, but have not been able to do more than the client machine, after going through several write-up's and trying to make-sense of the fragmented answers, I've been spinning my wheels.
My goal is as follows;
- support windows, OS-X, and Linux devices to do remote VPN pivoting
- minimize the configuration needed if/when a different sub-net needs to be scanned (not having to manually edit the config for a different sub-net)
- use the most ideal way to use windows-based scanner's to point towards the VPN tunnel (in hopes to avoid same sub-net as host.)
- be scalable.
I was thinking that ideally there would be 3 parts to this; the windows box (scanner resides) that uses VPN client to connect the PfSense VPN server (remote/local), then another VPN client on a remote network, where one can scan its sub-net)
I'm all ears, and really need a solution quickly! if a financial gain is a motivator for you to help me with my goals, We can work something out. ;)
-
bump