Open VPN Site to Site LAN bridge *Solved*

Jonb

I have read a lot of how to and forum posts however I am not able to solve my issue. I have a LAN at site A and LAN2 at site B that I want to layer 2 bridge.

SITE A                                            SITE B
LAN BRIDE OP7 –-- OPENVPN TAP -------  OP4 BRIDGE LAN2

Both sites are running PFsense 2.2.2 and I have created firewall rules to allow all IPv4 traffic through on all ports all protocols. I spun a server up at SITE B and it was able to get DHCP address with no issue but no pings work or anything else.

I have tried changing the MTU of the open interface, tired adjusting the firewall rules, rebuilt the bridges, tried the tunnel in TCP mode rather than UDP and nothing works. I have taken a packet capture and I can see the ARP request and I can see site A respond with the correct MAC and the PFsense on SITE A shows it in the ARP table but ping etc doesn't show.

What am I doing wrong.

Jonb

Right I have found the issue. They are VMware installed and I didn't realise that promiscuous mode needed to be enable on the interface of the VMware side. You will also need forged transmits on.