Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Tunnel establishes but can't see LAN

    Scheduled Pinned Locked Moved IPsec
    2 Posts 1 Posters 818 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mbrossar
      last edited by

      I am trying to set up a mobile VPN tunnel to a pfSense via IPSec so that I can manage the pfSense remotely if need be.  The tunnel is being established, but I cannot see anything on the local network.

      • I have a F/W rule on my IPSec interface allowing any protocol from any source to any destination.

      • Under Mobile Clients configuration, I provide a virtual IP address to clients and provide a list of accessible networks to clients.

      • The virtual IP pool does not overlap with my local network pool.

      • I've confirmed that my tunnel IP address on my client is within the pool defined for mobile clients above.

      • When the tunnel is up, and I try to ping a machine on my local network, it just hangs.

      • If I let my pings run and drop my tunnel, it starts responding ping: sendmsg: Network is unreachable.

      • If I let my pings run and move my connection from my test ISP connection to my local WiFi connection, after a few network unreachable messages, I start getting valid ping responses.

      I feel like I'm missing something stupid/simple.  Any advice?

      Thanks.

      1 Reply Last reply Reply Quote 0
      • M
        mbrossar
        last edited by

        Finally found the answer:  Set NAT Traversal to Force

        Thanks to Vorkbaard:  https://forum.pfsense.org/index.php?topic=46917.0

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.