Todo #15259
closedFeedback on pfSense® software Configuration Recipes — OpenVPN Site-to-Site Configuration Example with SSL/TLS
0%
Description
Page: https://docs.netgate.com/pfsense/en/latest/recipes/openvpn-s2s-tls.html
Text:
Select the server instance configured previously.
IPv4 Remote Network/s
The clientB LAN subnet, 10.5.0.0/24.
Note
This field sets up the internal route (iroute) for OpenVPN.
Feedback:
With the server running: 2.7.2-RELEASE (amd64)
built on Fri Dec 8 12:55:00 PST 2023
FreeBSD 14.0-CURRENT
And client running: 23.09.1-RELEASE (arm64)
built on Sat Dec 9 9:57:00 PST 2023
FreeBSD 14.0-CURRENT
Observing: GET INST BY VIRT: 10.1.4.9 [failed]
in the Status -> System Logs -> OpenVPN
Then the issue is that
The client specific override specification of
IPv4 Remote Networks : 10.1.4.0/24
is NOT SUFFICIENT to create an iroute on the server.
It is also required to add an Advance rule in the client specific override as below :
iroute 10.1.4.0 255.255.255.0;