Author Topic: VPN (mental pose) (Read 1996 times)

Darkopnsense · « **on:** March 22, 2020, 04:03:43 pm »

Hello community,

On VPNs, there is literature that I have and that I browse.

There are also reluctances to deploy dual NAT except that it neither has a choice.
Box FAI-> Box OPNsense-> LAN
Anyway this configuration is very implemented.

My question is very simple and in two points.
Did you operate:
1) OpenVPN through double NAT?
2) WireGuard through double NAT?

Regards,

PS: If so, I come up against a firewall rule problem.
My spirit takes hold.

johnsmi · « **Reply #1 on:** March 22, 2020, 04:33:09 pm »

OK, simple answer:
1) no
2) yes

--
More elaborately:
I never used nor tested OpenVPN.
I'm currently running Wireguard with doubleNAT:

Internet
|
ISP-Router with VoIP-stuff
|
OPNsense
|
LAN, Wireguard, ...

Basically https://wiki.opnsense.org/manual/how-tos/wireguard-client.html without Outbound-NAT.

Darkopnsense · « **Reply #2 on:** March 22, 2020, 04:42:29 pm »

Hi @johnsmi,

Thank you for your quick response, you are opening a path for me with "without Outbound-NAT", perhaps this is a possible resolution to my problem.

Regards,

Darkopnsense · « **Reply #3 on:** March 23, 2020, 07:37:55 pm »

Hello community,

The responses were not rushed. Given the number of posts on VPNs, people should not serve ...

Good information point although the deployment is not finalized. I ping my tunnel with WireGuard behind a double nat on APU machines of PC-Engines under OPNsense.

Cordially.

Author Topic: VPN (mental pose) (Read 1996 times)

Darkopnsense

VPN (mental pose)

johnsmi

Re: VPN (mental pose)

Darkopnsense

Re: VPN (mental pose)

Darkopnsense

Re: VPN (mental pose)