OPNsense Forum

Archive => 18.7 Legacy Series => Topic started by: petrus on September 07, 2018, 08:47:35 pm

Title: Not possible to connect over OpenVPN to Web GUI on a Bridge
Post by: petrus on September 07, 2018, 08:47:35 pm

The setup:
I'm trying to create a VPN concentrator for my family network, so Opnsense is running on a vserver of a cheap provider with a single public IP (let's say it's available. I'm trying to have a setup, with three OpenVPN servers, listening on three different ports on the single IP. The srv is listening on TCP80 and it is bound to the interface OVPN which has an IP of
Everything works about this one, I can access the web GUI.  The servers listening on TCP443 and on UDP443 are connected to the interfaces OVPN2 and OVPN3. These are bridged together via the interface OVPNBR. 
The web GUI is set up to listen on the interfaces OVPN1-3 and OVPNBR.
OVPNBR has a different IP and network: 
The clients receive an IP from if connected on TCP80 or if connected via TCP/UDP443

The Problem:
VPNs work well, I can ping or (the IPs on the firewall) from any VPN.
BUT I can only reach the WebGUI via the VPN connected over the TCP80.
Whatever I do I can't figure out, why? The FW logs say, that the packets are accepted.
Lighttpd is shown via sockstat, that it's listening on both IPs.

Maybe someone could have some better ideas then me, because I've reached the limits of my networking wisdom...

A little diagram of the setup will follow.

The details:
Code: [Select]

OPNsense 18.7.2-amd64
FreeBSD 11.1-RELEASE-p13
OpenSSL 1.0.2p 14 Aug 2018
CPU Type Intel(R) Xeon(R) CPU E5-2680 v4 @ 2.40GHz (2 cores)
VM Type, probably KVM
1 Single interface to the outside world
Disabled any IPv6 config
Tried to let lighttpd listen on any interface.

Thanks a lot!