OPNsense Forum

English Forums => General Discussion => Topic started by: oneict on December 10, 2019, 04:14:13 pm

Title: VPN routing to other subnet over LAN host as gateway
Post by: oneict on December 10, 2019, 04:14:13 pm

Hi,

We have the current setup:
LAN: 192.168.1.x
VOIPLAN: 10.0.10.x
Route to VOIPLAN via: 192.168.1.129 (L3 Switch Enterasys)

PC's in a LAN, IP telephones in VOIPLAN, when connected into the LAN we can open the telephone web interfaces on the VOIPLAN so the routing is working when in the LAN but not from VPN.

How can I get this route to work over VPN?
VPN Clients on: 10.0.7.x

VPN Server is pushing routes for both 192.x and 10.x network.
I can reach hosts on the LAN.
I tried a adding a firewall rule on OpenVPN accepting trafic and defining a specific gateway, no difference with having pass all.

Looking at the firewall when trying to connect to a host on 10.x shows pass, so it does not seem to block...

Tracert to an IP on the VOIPLAN shows it is going via the VPN 10.0.7.1 but then fails.

What am I missing?

Thanks in advance!

Kind regards
Johnny

Title: Re: VPN routing to other subnet over LAN host as gateway
Post by: siga75 on December 11, 2019, 07:50:38 am

I would try to add the OVPNS as tunnel interface, then on the pass firewall rules you can select the correct gateway to use

Title: Re: VPN routing to other subnet over LAN host as gateway
Post by: Maurice on December 11, 2019, 12:05:26 pm

What about a traceroute in the opposite direction? From a host in the VOIPLAN to a VPN client. Could it be an issue with the L3 "switch"?

Cheers

Maurice