Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenVPN Configuration

    Scheduled Pinned Locked Moved OpenVPN
    3 Posts 2 Posters 1.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      thenooby
      last edited by

      Hi Gurus,

      I have been trying to setup OpenVPN to connect 2 remote sites.

      My primary side, or should i say the server side is using a fixed IP, while the client side is on dynamic IP. Upon checking online, OpenVPN should work fine as long as either 1 remote site is a fixed IP. Please correct me if i am wrong.

      I have followed some guides online (such as https://doc.pfsense.org/index.php/Routing_internet_traffic_through_a_site-to-site_OpenVPN-connection_in_PfSense_2.1) on how to connect them, but to no avail.

      This is what I am trying to achieve:

      I have a LAN on each site, on the server side LAN for example my IP is 192.168.34.1, on the client side, i have a LAN of IP 192.168.50.1.

      So my question is, what exactly do i have to configure in OpenVPN in order to allow both of the said LANs to connect to each other.

      Any help is much appreciated.

      Thank You.

      1 Reply Last reply Reply Quote 0
      • chpalmerC
        chpalmer
        last edited by

        Does your boxes show connected to each other?    /status_openvpn.php

        Have you configured the OpenVPN firewall rules?

        Can you show your OpenVPN server and client configuration here please?  Cleanse them of anything you wouldn't want to share.

        Triggering snowflakes one by one..
        Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

        1 Reply Last reply Reply Quote 0
        • chpalmerC
          chpalmer
          last edited by

          That's the first time Ive read that document I have to admit.

          On the outbound NAT page notice that the address they show is the "Tunnel Network" and not one of your LAN addresses.  It might be easier for them to show a totally differen't subnet as their tunnel network in that document to help people not jump to the wrong conclusion as I did when I first skimmed over that.  But read slowly and you will catch it.

          I use a majority of addresses in the 172.x.x.x range and all my tunnel networks are 10.10.1.x/30  I just use the next /30 as I add vpn's.

          If you don't intend on routing all your internet traffic through one site or the other just skip the last instruction under Advanced Configuration.

          Triggering snowflakes one by one..
          Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.