Score:0

Server

Connecting to OpenVPN blocks access to local VLANs on different subnets

M.Parent

6/12/24, 5:02 PM

When I'm connecting to an OpenVPN provider, such as NordVPN, I lose connectivity to my local devices which are configured on another subnets.

Eg. the computer connecting to NordVpn is on vlan A which is at subnet 192.168.1.255, while the computer I would like to connect to is on vlan B which is at subnet 192.168.2.255. As soon as the computer on subnet A connect to VPN, I lose the connection to subnet B.

Is there a way to configure my pfsense router to address this? I would like to keep these vlans if possible.

1 + 7

vpn

openvpn

subnet

vlan

hardillb

6/12/24, 5:32 PM

Where is the OpenVPN client running, on your device (e.g. laptop) or on the pfsense router?

M.Parent

6/12/24, 5:59 PM

On the device, on vlan A

M.Parent

6/12/24, 6:14 PM

Please explain the -1 vote

hardillb

6/12/24, 8:30 PM

The downvote is most likely because as written the question is probably off topic as it is not clear it is in a business context.

M.Parent

6/13/24, 11:35 AM

It's a home setup. I didn't knew I had to mention this

hardillb

6/13/24, 12:05 PM

Server Fault is specifically for dealing with technology in the business context. https://serverfault.com/tour

Greg Askew

6/13/24, 1:35 PM

This question is asked multiple times per week. Sometimes per multiple times per day, and is off-topic. Yes, activating a VPN will change your routing table. Yes, it will cause devices to become inaccessible if you do not prepare for this. Yes this is usually the intended behavior, for a number of reasons, such as the host of VPN network doesn't want other networks attached to it. The details of using and managing a VPN from home may be a topic better suited for SuperUser.

Score:1

Server

hardillb

6/12/24, 8:29 PM

Then the problem will be OpenVPN changing the device's default route and nothing to do with pfsense.

You will need to add explicit routes on the device to the local router (pfsense) as the next hop for subnets on the vlans.

+ 2

M.Parent

6/13/24, 11:39 AM

Thank you for your reply! The nearest local router would be the main pfsense house router in this case, or it's some routing in the computer host file?

hardillb

6/13/24, 12:06 PM

You need to configure the routing on the device running the openvpn client, by the sounds of it you need to point to the pfsense machine as the next hop on the way to the vlan'd subnets.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Connecting to OpenVPN blocks access to local VLANs on different subnets

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.