Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Virtual private networks
»
vpn client has access to lan except opnsense host (and media/file server)
« previous
next »
Print
Pages: [
1
]
Author
Topic: vpn client has access to lan except opnsense host (and media/file server) (Read 881 times)
sunnbus
Newbie
Posts: 4
Karma: 0
vpn client has access to lan except opnsense host (and media/file server)
«
on:
November 30, 2022, 11:52:26 pm »
Hi,
First of all, thank you to OPNsense developers and community for making and improving a product that is superior to consumer-grade routers and provides an alternative to upgrading a router every few years.
My previous setup was modem x.x.1.1/24-->router x.x.0.1/24--->computer x.x.0.10 (media server in docker), got tired of the slow openvpn speeds so added a 4-port NIC on the server and installed OPNsense via virtualbox.
Current setup: modem 1.1/24 ->computer 0.1/24 (opnsense 0.1 and media server 0.10) -> AP point 0.30 (router in previous setup) -> clients 0.10-0.40; I have modem going into WAN port of computer, and LAN from NIC going to WAN on AP. I have no LAN going from AP back to a different NIC on the computer.
The problem: I set up WG server. When at home, I connect wirelessly to AP and can access all media server apps (port forwarding to docker apps), SMB on server, etc. When away and connect to WG server, I have internet access that is tunneled through a WG commercial server (like torGuard), I can ping OPNsense (0.1), all clients connected to the 0.30 AP and AP itself, but can't ping or access my 0.10 media server (which is also the computer hosting OPNsense in virtualbox). I tried to do so with both WG and ovpn. Same result.
Thank you
«
Last Edit: December 01, 2022, 01:46:23 am by sunnbus
»
Logged
sunnbus
Newbie
Posts: 4
Karma: 0
Re: vpn client has access to lan except opnsense host (and media/file server)
«
Reply #1 on:
December 01, 2022, 11:30:39 pm »
Update: Issue has resolved, though I have no idea how.
What I did: changed WAN subnet from 1.0/24 to x.0/24. Had two gateways for wan, WAN_DHCP and WAN_GW. disabled the _GW and set the DHCP priority the same as my wireguard gateway. The wireguard gateway is configured as a far gateway, the WAN_DHCP is not. Firewall allows 127.0.0.1/8 through wan but all else goes through wireguard tunnel (didn't change this part). All of sudden, the computer on which OPNsense is installed (and my media/file server) started tunneling through wireguard and started being recognized as a separate, pingable entity on 0.10.
Maybe you have a similar problem and can make sense of these changed to apply them on your specific setup.
**update: another development. Rebooted host computer (on which opnsense is installed) and everything stopped working again. Host computer IP = ISP IP rather than VPN provider IP and no access to LAN when connecting to home network via VPN. All I had to do is disable the physical WAN interface on the host computer. Then, host computer started passing through VPN provider tunnel and started having LAN access again.
«
Last Edit: December 02, 2022, 02:13:53 pm by sunnbus
»
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Virtual private networks
»
vpn client has access to lan except opnsense host (and media/file server)