English Forums > Virtual private networks

Can connect to OpenVPN, but cannot reach any LAN clients

(1/2) > >>

blazte:
Hi.

I have followed this guide "Setup SSL VPN Road Warrior" and can connect, but cannot reach any LAN clients.

LAN network: 10.1.1.0/24
VPN network: 10.4.4.0/24
Client network: 192.168.1.0/24

Client can connect to VPN and ping FW with 10.1.1.1 and 10.4.4.1, but cannot ping any LAN clients.

Any suggesting will be appreciated.

Screenshot is attached.

Version OPNsense 21.7.7-amd64

bartjsmit:
Is OPNsense the default gateway for your LAN clients?

Are you pushing the redirect-gateway option to your OpenVPN clients?

blazte:
OPNsense is the default gateway (10.1.1.1) for my LAN clients.

redirect-gateway is not pushed.

Here is my .ovpn file:
dev tun
persist-tun
persist-key
cipher AES-256-CBC
auth SHA512
client
resolv-retry infinite
remote X 1194 udp
lport 0
verify-x509-name X
remote-cert-tls server
auth-user-pass
<ca>
-----BEGIN CERTIFICATE-----
X
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
X
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
X
-----END PRIVATE KEY-----
</key>
<tls-auth>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
X
-----END OpenVPN Static key V1-----
</tls-auth>
key-direction 1

bartjsmit:
Do you have the 'redirect gateway' box ticked on the OpenVPN server tunnel settings?

Also try this on the client side:

redirect-gateway def1

Bart...

blazte:
redirect gateway is unchecked.

I have tried to add "redirect-gateway def1" in .ovpn file and after this I get my gateway public IP, but i can still not  reach any LAN clients.

Navigation

[0] Message Index

[#] Next page