I have successfully setup an OpenVPN server for external access. For the sake of this post let's say my tunnel network is 10.10.10.0/24. When creating the firewall rule for the OpenVPN interface and selecting the predefined "OpenVPN net" network as the source, my OpenVPN clients do not have access to the LAN. If I create an alias for the 10.10.10.0/24 network, and add it as the source, all works OK. So it looks as if the predefined "OpenVPN net" is not correctly defined. Where is the predefined "OpenVPN net" defined (so I can edit it and get rid of the redundant alias)? Why would the default value for "OpenVPN net" not be the tunnel network (10.10.10.0/24)?
I could not find any definition of the "OpenVPN net" either.
When running more than one OpenVPN servers (and networks) - does that network designate all OpenVPN networks?
> predefined "OpenVPN net" network as the source
This is broken because tunnel interfaces do not have a network subnet size assignment in point-to-point tunnels and therefore pf(4) is unable to figure out what it means.
Cheers,
Franco