________________________________ Van: Dreetjeh D <[email protected]> Verzonden: vrijdag 26 augustus 2016 19:01 Aan: Selva Nair Onderwerp: Re: Client as exit point?
Hello, Ok, so I have to find out how to do source based routing on pfSense first. Really, I thought only changing GW on Win7 to point to VPN was enough. As same one can do with a machine behind a VPN client, I did that before too. I found pfSense tut`s to route all LAN over VPN or a specific machine, but none with a VPN-ON/VPN-OFF "switch". The search/learning continues, Thanks a lot so far. Pippin ________________________________ Van: Selva Nair <[email protected]> Verzonden: woensdag 24 augustus 2016 00:46:17 Aan: Dreetjeh D CC: openvpn users list ([email protected]) Onderwerp: Re: Client as exit point? Hi, ......... >On win7: change the default gateway to pfsense (192.168.30.?) >>This was and still is the case. I meant that Win7 already has 192.168.30.1 as gateway. If pfsense is win7's gateway there is nothing more to do on win7. Looking at the routes, the only missing one is a route on pfsense to route packets from 192.168.30.9 through VPN (as suggested in previous emails). Add a route on pfsense to route packets from 192.168.30.9 via vpn-ip-of-NAS (192.168.158.2?). I have no idea how to do source-based routing on pfsense (check the docs, it must be possible). If it was linux one would user iproute2 and do something like echo "200 win7-vpn" >> /etc/iproute2/rt_table (do this only once) ip rule add from 192.168.30.9 table win7-vpn ip route add default via vpn-ip-of-NAS dev tun-if-name table win7-vpn (replace vpn-ip-of-NAS and tun-if-name by appropriate values) Selva
------------------------------------------------------------------------------
_______________________________________________ Openvpn-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openvpn-users
