OPNsense Forum

English Forums => Virtual private networks => Topic started by: RoamingJay on March 17, 2024, 03:01:33 am

Title: Do I really need to add OpenVPN as an interface for OpenVPN to work?
Post by: RoamingJay on March 17, 2024, 03:01:33 am
Looks like if I don't add OpenVPN as an interface, and enable it, clients won't be able to surf the internet.
After adding and enabling it as an interface, it appears under the firewall rules; now there are two items for OpenVPN, one is the usual interface rules and the other is the OpenVPN.

The interface is just enabled with the rest untouched (no address, no dhcp etc as openvpn has it by default).

Various documents recommend adding openvpn as an interface for the ease of applying rules, but isn't there already the OpenVPN section where rules can be applied?

Any thought?
Thanks
Title: Re: Do I really need to add OpenVPN as an interface for OpenVPN to work?
Post by: RoamingJay on March 17, 2024, 06:54:11 am
Perhaps for services like DNS to bind to the VPN interface ???
Title: Re: Do I really need to add OpenVPN as an interface for OpenVPN to work?
Post by: RoamingJay on March 18, 2024, 07:15:35 am
Just an update for myself,
On the way to create a 2nd OpenVPN server for a different network, suddenly realized the OpenVPN rules may apply to all servers. If I create interfaces for each server, they can then have different sets of rules.