Text only | Text with Images

OPNsense Forum

English Forums => Virtual private networks => Topic started by: X^#U3yuKBe!$JBS#w#HG on October 27, 2025, 01:05:44 AM

Title: OpenVPN - Lan Not Accessible from OpenVPN Connection
Post by: X^#U3yuKBe!$JBS#w#HG on October 27, 2025, 01:05:44 AM
OpenVPN on android connects fine , i try to ssh into my linux PC and its not accessible -

The Firewall shows it passes -
__timestamp__   2025-10-26T23:54:13
ack   
action   [pass]
anchorname   
datalen   0
dir   [out]
dst   13.13.13.109
dsthostname   
dstport   22
ecn   
id   12463
interface   bridge0
ipflags   DF
ipversion   4
label   let out anything from firewall host itself
length   60
offset   0
protoname   tcp
protonum   6
reason   match
rid   fae559338f65e11c53669fc3642c93c2
rulenr   72
seq   1302330262
src   13.13.12.2
srchostname   
srcport   55110
status   0
subrulenr   
tcpflags   S
tcpopts   
tos   0xb8
ttl   63
urp   65535

traceroute From Termux shows resolves at 13.13.12.1 But never enters the LAN Address.
I tried most of the Redirect Gateway options but nothing seems to work in redirecting the address to the lan.
I am looking to redirect only lan traffic and leave internet traffic untouched.

Thank You For the Help !

Title: Re: OpenVPN - Lan Not Accessible from OpenVPN Connection
Post by: X^#U3yuKBe!$JBS#w#HG on October 27, 2025, 01:33:13 AM
After a Little bit of investigation it seems the culprit is this rule - Any Ideas on a fix.

Rule -
__timestamp__   2025-10-26T23:41:18
ack   
action   [block]
anchorname   
datalen   0
dir   [in]
dst   13.13.13.108
dsthostname   
dstport   80
ecn   
id   23360
interface   ovpns1
ipflags   DF
ipversion   4
label   Default deny / state violation rule
length   60
offset   0
protoname   tcp
protonum   6
reason   match
rid   02f4bab031b57d1e30553ce08e0ec131
rulenr   6
seq   1414091109
src   13.13.12.2
srchostname   
srcport   44406
status   2
subrulenr   
tcpflags   S
tcpopts   
tos   0x0
ttl   64
urp   65535
Title: Re: OpenVPN - Lan Not Accessible from OpenVPN Connection
Post by: Patrick M. Hausen on October 27, 2025, 02:02:08 AM
Did you create any firewall rules that would actually allow that OpenVPN traffic? The rule in your last post is the default deny policy that hits when nothing else matches. A VPN connection does not magically pass traffic if there is no firewall rule allowing it.
Title: Re: OpenVPN - Lan Not Accessible from OpenVPN Connection
Post by: X^#U3yuKBe!$JBS#w#HG on October 27, 2025, 02:42:38 AM
Yeah , heres the rule -

Heres the OpenVPN Config


Also made sure the rule is enabled.

Title: Re: OpenVPN - Lan Not Accessible from OpenVPN Connection
Post by: Patrick M. Hausen on October 27, 2025, 07:56:19 AM
Please use attachments in your post. I block "image hosting" sites.
Title: Re: OpenVPN - Lan Not Accessible from OpenVPN Connection
Post by: X^#U3yuKBe!$JBS#w#HG on October 28, 2025, 08:54:01 PM
Unfortunately it took me some time to figure out attachments,
I found another forum post from you detailing how to do it for someone else., Unfortunately the preview button does not come up with editing posts.
Title: Re: OpenVPN - Lan Not Accessible from OpenVPN Connection
Post by: Patrick M. Hausen on October 28, 2025, 10:45:54 PM
You need to open the extended menu and select "modify" instead of "quick edit". This will also get you all of the formatting options.
Text only | Text with Images