Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Virtual private networks
»
OpenVPN, can't access internet
« previous
next »
Print
Pages: [
1
]
Author
Topic: OpenVPN, can't access internet (Read 4052 times)
Jjabba
Newbie
Posts: 13
Karma: 0
OpenVPN, can't access internet
«
on:
May 17, 2022, 09:37:34 am »
I've configured an OpenVPN Server running on OPNsense 22.1.7.
My config is pretty basic.
10.0.0.0/24 for VPN,
192.168.1.0/24 for LAN,
Issue:
While connected to my VPN,
I'm unable to access any public/web site
, this includes pinging DNS-servers like 8.8.8.8 or 1.1.1.1.
I do however have full access to the servers within my LAN, like my OPNsense router (192.168.1.1) and some other servers on my LAN.
I suspect I need to add a firewall rule that makes VPN clients able to 'surf the web' when connected, but Im not sure what might be the issue.
Help appreciated!
Logged
kapatiarohit
Newbie
Posts: 1
Karma: 0
Re: OpenVPN, can't access internet
«
Reply #1 on:
June 01, 2022, 08:00:31 pm »
open vpn error
⏎[Jun 1, 2022, 20:54:29] Connecting to [103.208.52.130]:1194 (103.208.52.130) via UDPv4
⏎[Jun 1, 2022, 20:54:39] Server poll timeout, trying next remote entry...
⏎[Jun 1, 2022, 20:54:39] EVENT: RECONNECTING ⏎[Jun 1, 2022, 20:54:39] EVENT: RESOLVE ⏎[Jun 1, 2022, 20:54:39] Contacting 103.208.52.130:1194 via UDP
⏎[Jun 1, 2022, 20:54:39] EVENT: WAIT ⏎[Jun 1, 2022, 20:54:39] WinCommandAgent: transmitting bypass route to 103.208.52.130
{
"host" : "103.208.52.130",
"ipv6" : false
}
⏎[Jun 1, 2022, 20:54:39] Connecting to [103.208.52.130]:1194 (103.208.52.130) via UDPv4 EVENT: CONNECTION_TIMEOUT BYTES_OUT : 3240 packet 60
⏎[Jun 1, 2022, 20:54:49] EVENT: CONNECTION_TIMEOUT BYTES_OUT : 3240
PACKETS_OUT : 60
CONNECTION_TIMEOUT : 1
N_RECONNECT : 5
⏎[Jun 1, 2022, 20:54:49] EVENT: DISCONNECTED ⏎
kindly give solution on it
Logged
Vilhonator
Full Member
Posts: 245
Karma: 13
Re: OpenVPN, can't access internet
«
Reply #2 on:
June 05, 2022, 11:38:24 am »
Check your firewall rules.
go to Firewall ---> Rules and select interface you created for VPN.
VPN network should have same "allow all" rule as LAN has, if it doesn't you can clone "Default allow LAN to any rule" from lan and change interface to "name of the VPN interface" and source to "name of the VPN" net (see picture, I circled them) and description to "Default allow VPN to any rule"
Opnsense will automatically create "allow all" rule only once to LAN interface, for any other interfaces you add later you need to create it manually.
Also rule priority is crucial, by default if "allow all" is on top of any block rules, then block rules will be ignored, so if you have some block rules, make sure they are above allow all rule.
Logged
Jjabba
Newbie
Posts: 13
Karma: 0
Re: OpenVPN, can't access internet
«
Reply #3 on:
June 26, 2022, 11:35:32 pm »
That did the trick! Thank you so much!👌
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Virtual private networks
»
OpenVPN, can't access internet