Can connect pfsense LAN IP but not the whole intranet



  • Hi,

    pfsense 2.2.4, WAN, LAN, OPT1 and OpenVPN setup.
    The VPN connection works fine but I need to figured out one thing - if possible.

    The LAN interface has assigned IP from the Windows server DHCP.
    The previous purpose was setup pfsense as proxy and this works fine.
    Now I want to add possibility to access intranet from home via OpenVPN.
    From established VPN connection I'm able to access pfsnese WEB GUI by LAN assigned IP. I also can access any of OPT1 address (DHCP on pfsense).
    Question - it's possible to access intranet from VPN connection? If so, how to do it?

    Thank you for any advice.

    Regards
    JMat



  • That's what VPN is made for.

    Your pfSense is not the default gateway at the host, you want to access, I think. So you may either do this by routing or by NAT and add a firewall rule to OpenVPN interface to allow traffic.
    If you want do it by routes, you have to add a route for VPN tunnel subnet to each host you want access. If this are couple it will be easier by NAT. Disadvantage: At the hosts access is seen coming from pfSense interface address, but that doesn't matter if you are the only one VPN client.

    For NAT go to Firewall > NAT > Outbound. If your outbound NAT does automatic rule generation, select Hybrid or manual and hit save at first.
    Then add a new rule by +:
    Interface: LAN
    Protocol: any
    Source: any
    Destination: any
    Translation: Interface address

    Add additional rules for further interfaces like OPT1.



  • Hi,

    thanks for suggestions.
    Tested and introduced.

    Regards
    JMat


Log in to reply