Actions
Bug #8055
closedpfsense GUI accessible over tun interface address from remote network
Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Rules / NAT
Target version:
-
Start date:
11/05/2017
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
Affected Architecture:
Description
Configuration:
site A pfSense:
lan: 10.76.175.0/24
OpenVPN_TUN: 172.28.10.1/30 (OpenVPN routing 192.168.1.2/32)
site B:
lan 192.168.1.0/24
OpenVPN_TUN: 172.28.10.2/30 (openvpn routing 10.76.175.2/32)
on Site A firewal rules:
accept from 192.168.1.2 to 10.76.175.2
drop from any to any
all hosts on 192.168.1.0/24 are able to reach 172.28.10.1
firewall is blocking as expected connection form 172.28.10.2 -> 172.28.10.1
but don't catch 192.168.1.0/24 -> 172.28.10.1 (no log for these packages in firewall log, even with enalbed pass packets loging)
Updated by Grzegorz Krzystek over 6 years ago
INVALID - please close, additional route path advertised by secondary client.
Actions