Ask a question

3229 questions

3932 answers


3392 members

Ask a question
0 votes
in Networks by


I have some problem accessing the lan behind a rut230.

This is the situation.

Pfsense as openvpn server - Rut230 as openvpn client (no public ip address available) - tun mode

The vpn tunnel goes up just fine.

I can access every single host behind the server, but I am not able to access lan hosts (include the rut230) behind the teltonika router.

I can see the packet in the tunnel (tcpdump pfsense server) (10:59:52.732753 IP > ICMP echo request, id 64343, seq 505, length 64) is the pfsense side of the tunnel is the teltonika router (lan ip)

using tcpdump on teltonika side there is no icmp request

I added this firewall rules on rut230 (From any host in vpn To any host in lan accept forward - enabled)

So it should work, what am I missing?



1 Answer

0 votes


Change router LAN IP subnet from 2.1 to another one. Are you using TLS authentication or Static key?

According you description seems issue is related with routes, but without full configuration hard to say where you made a mistake.

You could check attached configuration example, perhaps you will find what was missed.

thanks for the answer

why i should change lan ip subnet? just curios

this is the routing part from pfsense server          UGS      ovpns3 ( is the tunnel 1-> pfsense 2-> teltonika)

routing from teltonika         UG        0 0          0 3g-ppp   U         0 0          0 tun_c_naq UH        0 0          0 3g-ppp   U         0 0          0 br-lan   UG        0 0          0 tun_c_naq   UG        0 0          0 tun_c_naq

I am using tls authentication with certificate

why i should change lan ip subnet? just curios

By default router use 2.0 subnet for Hotspot.

I am using tls authentication with certificate

Please check this part in your server, this config is responsible for correct routes from server to client.