OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of Skier9234 »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - Skier9234

Pages: [1]
1
Virtual private networks / How to route certain websites through External VPN
« on: July 16, 2024, 04:34:51 am »
Hi there,

I would like to route certain websites through my VPN Gateway but can't seem get it to work (The VPN works I'm routing an entire subnet through it).
Let's say I want to route whatismyip.com through VPN.

Alias

Name: Test
Type: Host(s)
Content: whatismyip.com

Firewall Rule LAN

IPV4
Source: any
Destination: Alias Test
Gateway: VPN_GW
 

Would someone be able to assist with this.

2
Virtual private networks / OpenVPN Site to Site VPN unable to reach internal networks
« on: February 13, 2024, 09:10:58 pm »
I've been pulling my hair out setting up a site to site vpn with OPNSense. I followed the official guide with one exception, I'm using certificates. And I saw in a video that the interfaces created by the server and client have to be enabled, which I did. The VPN connection is established but I'm not able to ping anything from the server or client side. I'm just starting out with firewall rules so my apologies if this is something really simple that I don't understand yet. I'd like to say thank you in advance for any help.

https://docs.opnsense.org/manual/how-tos/sslvpn_s2s.html

More detail regarding the setup:

Site A (Server):
OpenVPN server config (legacy)

Server Mode: Peer to Peer (SSL/TLS)
Protocol:UDP4 Device Mode: tun
Interface:WAN
Local Port: 1194
TLS Authentication: Disabled
Peer Certificate Authority: local-ca
Server Certificate: local-crt
Encryption Alogorithm: AES-256-CBC
Auth Digest Algorithm: SHA512
IPv4 Tunnel Network: 10.10.100.0/24
IPv4 Local Network: 192.168.0.0/24
IPv4 Remote Network: 10.19.0.0/24
Compression: Enabled LZ4 v2

Interfaces:
VPN interface: enabled

Firewall Rules:
WAN: Protocol UDP4 Allow any on Destination Port 1194 to Destination This Firewall
OpenVPN: Protocol IPv4 Allow any (no changes/default config)

Site B (Client)
OpenVPN client config (legacy)

Server Mode: Peer to Peer (SSL/TLS)
Protocol:UDP4 Device Mode: tun
Interface:WAN
Remote server:
Host or Address: 1.2.3.4
Port: 1194
TLS Authentication: Disabled
Peer Certificate Authority: local-ca
Server Certificate: local-crt
Encryption Alogorithm: AES-256-CBC
Auth Digest Algorithm: SHA512
IPv4 Tunnel Network: 10.10.100.0/24
IPv4 Remote Network: 192.168.0.0/24
Compression: Enabled LZ4 v2

Interfaces:
VPN interface: enabled

Firewall Rules:
OpenVPN: Protocol IPv4 Source: 192.168.0.0/24 Allow any (no changes/default config)

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2