"
I am trying to resolve the same type of issue.
OPNsense 22.1.8_1
OpenVPN - split tunnel
Remote OpenVPN clients not point-to-point.
Have no problems connecting and working on the initial LAN segment behind OPNsense/OpenVPN. I have added new segments that the VPN clients cannot reach. Each of these segments are directly connected to the OPNsense box using a different interface per segment.
new LAN segments - 10.18.91.0/24 and 10.18.92.0/24
VPN clients pool - 10.18.15.0/24
I added
push "route 10.18.91.0 255.255.255.255.0" and
push "route 10.18.92.0 255.255.255.0"
to the "advanced" section of the VPN:OpenVPN:Servers config page in OPNsense and can see the routes added on a connected Windows box.
@wedge1001 also stated to add another server side route(s) so the new segments know how to reply back.
Where are these routes added? Under System:Routes:Status, there is already an entry for a route with the destination network for my VPN clients - 10.18.15.0/24 via gateway 10.18.15.2 using the ovpns1 interface.
What am I missing here?
Thanks in advance.
OPNsense 22.1.8_1
OpenVPN - split tunnel
Remote OpenVPN clients not point-to-point.
Have no problems connecting and working on the initial LAN segment behind OPNsense/OpenVPN. I have added new segments that the VPN clients cannot reach. Each of these segments are directly connected to the OPNsense box using a different interface per segment.
new LAN segments - 10.18.91.0/24 and 10.18.92.0/24
VPN clients pool - 10.18.15.0/24
I added
push "route 10.18.91.0 255.255.255.255.0" and
push "route 10.18.92.0 255.255.255.0"
to the "advanced" section of the VPN:OpenVPN:Servers config page in OPNsense and can see the routes added on a connected Windows box.
@wedge1001 also stated to add another server side route(s) so the new segments know how to reply back.
Where are these routes added? Under System:Routes:Status, there is already an entry for a route with the destination network for my VPN clients - 10.18.15.0/24 via gateway 10.18.15.2 using the ovpns1 interface.
What am I missing here?
Thanks in advance.
