Hey folks
Still struggling with the OPNsense in various topics since im switched from Sophos UTM. This time SNAT.
I got openVPN working, can connect to OPNsense and reach all internal stuff on the LAN interface. But i want to SNAT my openVPN address to the LAN interface address if the traffic goes to the IPSEC VPN's - so i dont have to setup the openVPN network to be routed inside the IPSEC vpns.
As i did read in the manual - SNAT is the same as Outbound NAT and therefore i did try to setup a rule ( i have only manual rule generation on the OPNsense) but whatever i did setup, it didnt work.
So how to achieve this?
I did try to setup a outbound rule with the following specs
Interface: LAN (or openVPN, doesnt matter)
Source: openVPN net
Source Port: *
Destination: intNET_VPNNetworks (grouped all IPSEC VPN Networks)
Destination Port: *
NAT Adress: LAN address
Static Port: No