OpenVPN Client can ICMP through to IPSec tunnel clients, but no TCP/UDP traffic



  • My current config:

    IPSEC Tunnel (Site to Site):

    10.1.1.254 (RemoteHost1), 10.1.1.10(RemoteHost2) <–------LAN(10.1.1.0/24)----------->Cisco ASA(WAN x.x.x.x)<----------IPSEC--------->pfsense(WAN y.y.y.y)<--------->LAN(192.168.2.0/24)<-------->192.168.2.10 (Client1)

    OpenVPN Tunnel (Client to Site):

    OpenVPN Client (192.168.10.2) <---------> pfsense(WAN y.y.y.y)<-------> OpenVPN subnet (192.168.10.0/24)

    I can ping from the OpenVPN Client to the pfSense LAN (192.168.2.0/24). I can also ping from the OpenVPN client to the Remote Lan (10.1.1.0/24). But when I try to access http services on RemoteHost2 I can't receive any data.

    The firewall logs say the traffic is allowed to pass from 192.168.10.2 --->10.1.1.10:80 with TCP:SEW.

    I can however access the HTTP services on RemoteHost2 on the pfsense LAN (192.168.2.0/24) and it gives me the following firewall log message: PASS ---> 192.168.2.10--->10.1.1.10:80 TCP:S

    Any assistance would be greatly appreciated.


Log in to reply