OpenVPN Outbound NAT

allan · August 06, 2023, 05:11:15 AM

I just upgraded to 23.7 and migrated my OpenVPN remote access server to the new instance config. I am not completely certain, but I thought "OpenVPN networks" was listed under Outbound NAT automatic rules. Was removing it something intentional or a bug? I created a manual outbound NAT rule which got me going, but I want to mention it here just in case.

Andi.K · August 17, 2023, 03:14:18 PM

Same here, I think this is a bug.

Version 23.7.1_3

The NAT rule is important when, for example, the default GW is redirected. Without NAT no internet access is possible

franco · August 17, 2023, 03:28:28 PM

NAT rules are manual now with IPsec/OpenVPN MVC pages.

Cheers,
Franco

RES217AIII · August 19, 2023, 08:14:00 AM

Good morning,
how does this outgoing NAT rule have to look like?
I'm having problems with my OPN servers: Both the old server configuration and a new instance do not connect.
Thank you

allan · August 19, 2023, 05:57:05 PM

The NAT rule is only for connecting OpenVPN users to the Internet. Access to internal resources would not go through the NAT.

Here is how I have it set under Firewall > NAT > Outbound:

1. Set the Mode to "Hybrid outbound NAT rule generation"
2. Create a Manual rule and set the following options:

Interface = WAN
TCP/IP Version = IPv4
Protocol = any
Source address = OpenVPN net
Translation / target = Interface address
(optional) Log = checked

RES217AIII · August 20, 2023, 11:04:55 AM

Thank you!

OpenVPN Outbound NAT

allan

August 06, 2023, 05:11:15 AM

Andi.K

August 17, 2023, 03:14:18 PM #1

franco

August 17, 2023, 03:28:28 PM #2

RES217AIII

August 19, 2023, 08:14:00 AM #3 Last Edit: August 19, 2023, 08:19:30 AM by b.unkel

allan

August 19, 2023, 05:57:05 PM #4

RES217AIII

August 20, 2023, 11:04:55 AM #5