1
15.1 Legacy Series / [SOLVED] terribly frustrating openvpn issue
« on: June 30, 2015, 02:24:04 pm »
Hi,
So I'm currently running OPNsense 15.1.12-amd64 . I'm having a very frustrating OpenVPN issue where I can connect to the VPN, but cannot access anything beyond the gateway itself. This issue has a sort of interesting story, I initially had this installed within a VM and the firewall itself worked fine, openvpn never really did. I had an alternate server at the time so this didn't really bother me.
We've since purchased a dedicated piece of hardware for this, a 1u 6-nic intel chipset board/1u case off of aliexpress. Now the strange part to me, is after installing onto the new hardware and re-importing the XML configuration OpenVPN had suddenly started routing traffic correctly, I was able to connect and access any of our subnets/attached VPN's just fine and dandy. However seemingly upon activating one of the additional interfaces (for a separate lan subnet for VOIP) openvpn once again stopped routing traffic altogether.
When connected via openvpn I am unable to reach any point past the gateway, and I am unable to ping connected clients either; getting a ping_sendto permission denied error when attempting to. I'm about at my wits end, the openvpn interface firewall is configured to let all traffic through; openvpn itself connects and authenticates correctly and traffic does flow just fine to the gateway itself.
I'm wondering if anyone here has had a similar issue and might have some insight. I've checked the firewall logs and don't see any blocked packets, I am completely at a loss as to what is causing this.
So I'm currently running OPNsense 15.1.12-amd64 . I'm having a very frustrating OpenVPN issue where I can connect to the VPN, but cannot access anything beyond the gateway itself. This issue has a sort of interesting story, I initially had this installed within a VM and the firewall itself worked fine, openvpn never really did. I had an alternate server at the time so this didn't really bother me.
We've since purchased a dedicated piece of hardware for this, a 1u 6-nic intel chipset board/1u case off of aliexpress. Now the strange part to me, is after installing onto the new hardware and re-importing the XML configuration OpenVPN had suddenly started routing traffic correctly, I was able to connect and access any of our subnets/attached VPN's just fine and dandy. However seemingly upon activating one of the additional interfaces (for a separate lan subnet for VOIP) openvpn once again stopped routing traffic altogether.
When connected via openvpn I am unable to reach any point past the gateway, and I am unable to ping connected clients either; getting a ping_sendto permission denied error when attempting to. I'm about at my wits end, the openvpn interface firewall is configured to let all traffic through; openvpn itself connects and authenticates correctly and traffic does flow just fine to the gateway itself.
I'm wondering if anyone here has had a similar issue and might have some insight. I've checked the firewall logs and don't see any blocked packets, I am completely at a loss as to what is causing this.