Openvpn allow access to clients from private network

horin

10/1/23, 2:07 PM

I do have a setup with pfsense. I have configured 2 LAN subnets: 192.168.50.0/24 is a DMZ 192.168.100.0/24 is a Management

Then in DMZ I do have an openvpn server. To that server multiple clients are connecting. I would like to be able to connect to their interfaces from 192.168.100.0/24. I was able to route ping to the vpn server (seen it on tcp dump) by specifing vpn server as gateway for 10.20.0.0/24 on pfsense.

However the ping never reached tun interface (tcp dump only saw it on eth interface and not as outgoing on tun).

I do believe that I must do something with IP tables on openvpn server. Any suggestions on how to achieve rhis without switching to site-site vpn? I know that I can connect as vpn client and allow client-client but this is not prefered way.

According to this https://openvpn.net/vpn-server-resources/reach-openvpn-clients-directly-from-a-private-network/ it should be possible in openvpn access server but how to do this in standard ovpn server.

Thank you in forward

0 + 0

iptables

openvpn

pfsense

djdomi

10/1/23, 4:36 PM

Questions seeking installation, configuration or diagnostic help must include the desired end state, the specific problem or error, sufficient information about the configuration and environment to reproduce it, and attempted solutions. Questions without a clear problem statement are not useful to other readers and are unlikely to get good answers

horin

10/1/23, 5:10 PM

I think that questions is quite clear. How should I setup openvpn server to allow other hosts on the same LAN (as openvpn server) to connect to openvpn clients. The desired state is described in provided link https://openvpn.net/vpn-server-resources/reach-openvpn-clients-directly-from-a-private-network/

djdomi

10/4/23, 6:40 AM

nope, we have here a minimum requirement and you did not follow the instructions I gave to you "musst include sufficient information about the configuration and environment to reproduce it, and attempted solutions." we are not just providing solvings, we help you on an existing basis where you already tried something.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Openvpn allow access to clients from private network

TH: Openvpn อนุญาตให้เข้าถึงลูกค้าจากเครือข่ายส่วนตัว

RO: Openvpn permite accesul clienților din rețeaua privată

RU: Openvpn разрешает доступ клиентам из частной сети

VI: Openvpn cho phép truy cập vào máy khách từ mạng riêng

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.