OPNsense Forum

English Forums => General Discussion => Topic started by: superfox on January 09, 2019, 08:41:53 am

Title: openvpn - client specific override and firewall
Post by: superfox on January 09, 2019, 08:41:53 am

Hi there!

I have an openvpn server with the settings see attached.

For this I have set up a client specific override. After connecting, the client is assigned an IP from the correct network based on the common name.

However, the client can not send data through the tunnel, but it works great for non-csc clients.

Did i forgot something?

Title: Re: openvpn - client specific override and firewall
Post by: superfox on January 09, 2019, 08:42:58 am

and here the firewall rules attached

Title: Re: openvpn - client specific override and firewall
Post by: mimugmail on January 12, 2019, 05:30:02 pm

I don't think that the Tunnel Network can be outside of servers Tunnel Network. Please set one static IP from the Tunnel Network of server and test again.

Title: Re: openvpn - client specific override and firewall
Post by: superfox on January 15, 2019, 11:08:07 am

I changed the tunnel subnet in csc-config to 10.4.2.100/30

So now the server get´s the first ip .101 and the client the second ip .102

Hope this step was correct?


Thanks, it´s working now.

Title: Re: openvpn - client specific override and firewall
Post by: mimugmail on January 15, 2019, 04:54:42 pm

This should do it, yes :)