1
16.7 Legacy Series / OpenVPN client: route everything through VPN fails
« on: September 16, 2016, 08:22:43 pm »
Hi all,
I fail to configure the OpenVPN client properly.
Desired behaviour: All traffic from LAN goes through the OpenVPN client interface connection (and then from the OpenVPN server endpoint to the internet).
Actual behaviour: The OpenVPN connection is working and I see a Initialization Sequence Completed in the log file.
All the traffic from the LAN interface goes directly to WAN, however the desired behavior would be to go through the OpenVPN connection.
Resources I read so far and follow during the configuration process:
- https://wretmo.se/2016/01/24/how-to-setup-openvpn-client-on-opnsense/
- https://docs.opnsense.org/manual/how-tos/sslvpn_s2s.html?highlight=openvpn#step-5-client-firewall-rules
- https://forum.opnsense.org/index.php?topic=1951.msg6073#msg6073
OpenVPN client log file:
Interface
-> if.PNG
Gateway
-> gw.PNG
NAT outbound
-> ob.PNG
Firewall rules
-> fw.PNG
What point do I miss here?
I fail to configure the OpenVPN client properly.
Desired behaviour: All traffic from LAN goes through the OpenVPN client interface connection (and then from the OpenVPN server endpoint to the internet).
Actual behaviour: The OpenVPN connection is working and I see a Initialization Sequence Completed in the log file.
All the traffic from the LAN interface goes directly to WAN, however the desired behavior would be to go through the OpenVPN connection.
Resources I read so far and follow during the configuration process:
- https://wretmo.se/2016/01/24/how-to-setup-openvpn-client-on-opnsense/
- https://docs.opnsense.org/manual/how-tos/sslvpn_s2s.html?highlight=openvpn#step-5-client-firewall-rules
- https://forum.opnsense.org/index.php?topic=1951.msg6073#msg6073
OpenVPN client log file:
Code: [Select]
Sep 16 18:04:47 openvpn[97185]: Initialization Sequence Completed
Sep 16 18:04:40 openvpn[97185]: /usr/local/sbin/ovpn-linkup ovpnc1 1500 1558 10.x.x.x 255.255.0.0 init
Sep 16 18:04:40 openvpn[97185]: /sbin/route add -net 10.y.y.y 10.x.x.x 255.255.0.0
Sep 16 18:04:40 openvpn[97185]: /sbin/ifconfig ovpnc1 10.x.x.x 10.y.y.y mtu 1500 netmask 255.255.0.0 up
Sep 16 18:04:40 openvpn[97185]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Sep 16 18:04:40 openvpn[97185]: TUN/TAP device /dev/tun1 opened
Sep 16 18:04:40 openvpn[97185]: TUN/TAP device ovpnc1 exists previously, keep at program end
Interface
-> if.PNG
Gateway
-> gw.PNG
NAT outbound
-> ob.PNG
Firewall rules
-> fw.PNG
What point do I miss here?