SourceNAT openVPN to LAN address

Started by rebru, January 31, 2023, 10:36:30 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 31, 2023, 10:36:30 AM Last Edit: January 31, 2023, 06:09:19 PM by rebru
Hey folks

Still struggling with the OPNsense in various topics since im switched from Sophos UTM. This time SNAT.

I got openVPN working, can connect to OPNsense and reach all internal stuff on the LAN interface. But i want to SNAT my openVPN address to the LAN interface address if the traffic goes to the IPSEC VPN's - so i dont have to setup the openVPN network to be routed inside the IPSEC vpns.

As i did read in the manual - SNAT is the same as Outbound NAT and therefore i did try to setup a rule ( i have only manual rule generation on the OPNsense) but whatever i did setup, it didnt work.

So how to achieve this?

I did try to setup a outbound rule with the following specs

Interface: LAN (or openVPN, doesnt matter)
Source: openVPN net
Source Port: *
Destination: intNET_VPNNetworks (grouped all IPSEC VPN Networks)
Destination Port: *
NAT Adress: LAN address
Static Port: No
Print
Go Up Pages1
User actions