Re: [pfSense] pfSense 2.0 - Filtering traffic on OpenVPN

2011-10-14 Thread Tim Dickson
I'm attempting to connect from a client to a device on the LAN which means the traffic should be hitting the filter rule on the OpenVPN tab, which allows all traffic. What client are you using? And from what OS? If you are using Vista/7 remember to run the OpenVPN client as an admin so it can

Re: [pfSense] pfSense 2.0 - Filtering traffic on OpenVPN

2011-10-13 Thread Daniel Llewellyn
On Thu, Oct 13, 2011 at 16:03, Tim Nelson tnel...@rockbochs.com wrote: I would expect it to work this way also. However, I've removed the OPT interfaces corresponding to the OpenVPN servers. Next, I've added one rule to 'Allow all traffic, any protocol, any source, any destination, etc' the

Re: [pfSense] pfSense 2.0 - Filtering traffic on OpenVPN

2011-10-13 Thread Tim Nelson
- Original Message - On Thu, Oct 13, 2011 at 16:03, Tim Nelson tnel...@rockbochs.com wrote: I would expect it to work this way also. However, I've removed the OPT interfaces corresponding to the OpenVPN servers. Next, I've added one rule to 'Allow all traffic, any protocol, any

Re: [pfSense] pfSense 2.0 - Filtering traffic on OpenVPN

2011-10-13 Thread Vassilis V.
Most of the times I have had trouble with the routing and not with the firewall rules. Check if the client has the correct gateway set for the LAN subnet and check if the push route is added correctly. A traceroute from the client can help you see if the packets are being send through the VPN

Re: [pfSense] pfSense 2.0 - Filtering traffic on OpenVPN

2011-10-13 Thread Tim Nelson
- Original Message - In 2.0 each interface is renamed in a unique way so you do not need dev tun or any similar entries in the options. You can assign the interfaces if you want (set an IP type of 'none' on them) and filter individually if you want, too. I run with two of mine

Re: [pfSense] pfSense 2.0 - Filtering traffic on OpenVPN

2011-10-12 Thread Vassilis V.
Hi Tim! I havent been using pfsense for very long, but under Firewall-Rules you should have a tab OpenVPN. Try putting there some rules, it works for me. Setting up an extra interface used to be done in older pfsense version, no idea if its still valid. Maybe someone more experienced can give

Re: [pfSense] pfSense 2.0 - Filtering traffic on OpenVPN

2011-10-12 Thread Vassilis V.
Jim Pingle wrote on 12.10.2011 23:55: In 2.0 each interface is renamed in a unique way so you do not need dev tun or any similar entries in the options. You can assign the interfaces if you want (set an IP type of 'none' on them) and filter individually if you want, too. I run with two of