OPNsense Forum

Archive => 16.1 Legacy Series => Topic started by: samnet on June 22, 2016, 04:27:39 pm

Title: Opnsense box as a client to OpenVPN Access Server (OpenVPN AS) question
Post by: samnet on June 22, 2016, 04:27:39 pm

I would like to raise this question, Im using opnsense box to connect to OpenVPN AS server, our need is to have a foreign ip inorder to access region restricted website.
the tunnel is up and its working well, I need to know if its possible for opnsense to force everything through the tunnel and if the tunnel is dropped then internet is blocked, we only want the internet to work if the tunnel is up.
is this possible?
I have created an interface called ovpn and tried many firewall rules on lan but it fails.
any advice pls?

Title: Re: Opnsense box as a client to OpenVPN Access Server (OpenVPN AS) question
Post by: samnet on June 23, 2016, 11:18:11 pm

any clue pls??
someone suggested this
1 rule:
FROM LAN net
TO LAN address
Allow

2 rule:
FROM LAN net
TO Any
Allow
Gateway - OpenVPN interface gateway.

but didnt work

Title: Re: Opnsense box as a client to OpenVPN Access Server (OpenVPN AS) question
Post by: kai on June 24, 2016, 09:14:53 am

I am also (mostly) trying to acheive this. I don't need traffic to fail but I'm aiming to simply route all traffic from LAN clients over an OpenVPN tunnel that goes out the WAN to a VPN provider and then on to the general internet from there.

Does anyone have a tutorial on how to do this? I've seen a few pfsense ones but they don't translate well into OPNSense.

Any suggestions would be most welcome. I'm pretty sure it should be easy. But can't seem to make it work.

Kai

Title: Re: Opnsense box as a client to OpenVPN Access Server (OpenVPN AS) question
Post by: samnet on June 24, 2016, 11:28:58 am

Quote from: kai on June 24, 2016, 09:14:53 am

I am also (mostly) trying to acheive this. I don't need traffic to fail but I'm aiming to simply route all traffic from LAN clients over an OpenVPN tunnel that goes out the WAN to a VPN provider and then on to the general internet from there.

Does anyone have a tutorial on how to do this? I've seen a few pfsense ones but they don't translate well into OPNSense.

Any suggestions would be most welcome. I'm pretty sure it should be easy. But can't seem to make it work.

Kai

I have already done the connectin part and its working via tunnel, what Im after to to make sure I only use the tunnel and if tunnel goes down then no internet is provided.

ive followed this https://doc.pfsense.org/index.php/Pfsense_to_Openvpn_Access_Server
and https://forum.pfsense.org/index.php?topic=74685.msg408337#msg408337