Hi Jeff,

as you put so much work into your post on the forum I did not
want to hit you with an "off the cuff" answer ...
but I can, at least, see more clearly your situation.

Also, it seems to me, you have all the necessary tools and knowhow
to implement the solution yourself .. which you have .. more or less ..
ie: a "fully routed" solution .. which you claim does not work ?

Quote:
 I added a static route on my default gateway (a PfSense box) to redirect
any VPN network traffic back to the VPN box, which I believe should send it
back through the tunnel to the point of origin. However, this did not
resolve my issue, so I must be mistaken about my routing somewhere, or there
is something else that I have not considered

What you have not considered is .. pfsense .. we do not support it.

As I have had a similar issues with different routers (and pfsense)
I will add this as a pointer:

Not all /routers or Operating Systems/ are created equal.
RFC compliancy is extremely optional ..

Check all your Vendor's documentation ..
Run a packet sniffer to verify their often bold and inaccurate claims ..
(Example:
http://www.wired.com/2015/12/juniper-networks-hidden-backdoors-show-the-risk-of-government-backdoors/
 )

The point being:
Check you have "ICMP redirect support" throughout.

Otherwise, add the routes to the clients that need it .. manually
or from some other central configuration system.

Just my2c .. it worked for me.

Note: OpenVPN cannot help with your routers etc
Note: ICMP redirect is often considered to be a security risk!

PS: You did not include any logs on your forum post ..
and .. as (*currently) I am helping mod the forum
I am currently holding off a misguided reply
which has been offered to your forum question.
Presumably you would prefer to add the logs
of a connection which *does not work* as expected .. first ;)


Enjoy the journey .. the destination maybe disappointing ;)


----- Original Message ----- 
From: "Jeff Boyce" <jbo...@meridianenv.com>
To: <openvpn-users@lists.sourceforge.net>
Sent: Tuesday, January 05, 2016 6:34 PM
Subject: [Openvpn-users] Issue getting to LAN behind VPN Server


> Greetings -
>
> I have a detailed description of my issue posted over on the Forum, but
> am not getting any responses.  A few reads over the course of several
> weeks, but no responses.  I posted it to the Forum after someone on the
> list here suggested the Forum might be a better place for assistance.
> But alas, it appears to me that this list gets more traffic and has a
> more knowledgeable base of helpers, so I am coming back to this list
> with my request.
>
> My issue description is posted at
> https://forums.openvpn.net/topic20369.html.
>
> I believe that my problem is a routing issue, but I have exhausted my
> avenues of research and knowledge.  I am hoping someone with an eye for
> routing issues might be able to spot where my issue is located and offer
> a recommendation.  Any responses can be directed to either the Forum or
> here at the mailing list, as I am now subscribed to the Forum and have
> been on the mailing list for years.  You may cc me directly with
> responses to the mailing list as I am only subscribed to the daily
> digest.  Thanks.
>
> -- 
>
> Jeff Boyce
> Meridian Environmental
> www.meridianenv.com
>
>
> ------------------------------------------------------------------------------
> _______________________________________________
> Openvpn-users mailing list
> Openvpn-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/openvpn-users


------------------------------------------------------------------------------
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users

Reply via email to