Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
19.7 Legacy Series
»
SSL VPN and port forwarding with one IP
« previous
next »
Print
Pages: [
1
]
Author
Topic: SSL VPN and port forwarding with one IP (Read 2684 times)
murmelbahn
Newbie
Posts: 44
Karma: 1
SSL VPN and port forwarding with one IP
«
on:
October 31, 2019, 07:31:40 pm »
Hi all,
at home I have only one dynamic IP adaress. As today I'm using multiple cnames on a duckdns entry. I'm forwarding port 80 and 443 to a NGINX reverse proxy. My question is if it is possible to use a SSL VPN with port 443 and also using my current setup? I think the OPNsense should must take a look at the domain name for example vpn.domain.tld and decide if it should answer a VPN or a web access.
Thanks in advance.
Logged
bartjsmit
Hero Member
Posts: 2018
Karma: 194
Re: SSL VPN and port forwarding with one IP
«
Reply #1 on:
October 31, 2019, 07:50:17 pm »
OpenVPN can share a port with another daemon with the 'port-share' option. It will analyse the packets and forward those that not VPN specific.
If both are running on the same host, you will need to make sure that OpenVPN listens only on the external interface and the other daemon listens only on the loopback interface.
Details are here:
https://community.openvpn.net/openvpn/wiki/Openvpn24ManPage
Bart...
Logged
murmelbahn
Newbie
Posts: 44
Karma: 1
Re: SSL VPN and port forwarding with one IP
«
Reply #2 on:
October 31, 2019, 08:30:34 pm »
Sorry, I forget to mention that the OPNSense is also the OpenVPN Server. Ist this function in the implementation for OPNSense included?
Logged
bartjsmit
Hero Member
Posts: 2018
Karma: 194
Re: SSL VPN and port forwarding with one IP
«
Reply #3 on:
October 31, 2019, 09:13:29 pm »
There isn't a GUI option for this so you'll likely have to get your hands dirty. OpenVPN configurations are kept in /var/etc/openvpn
I don't use nginx so you'll have to experiment with that one. The config file should also appear under /var/etc
There's a chance that the configs will get overwritten when OPNsense or the relevant plugins are updated.
Bart...
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
19.7 Legacy Series
»
SSL VPN and port forwarding with one IP