Date: Sun, 27 Aug 2017 20:40:43 -0700 From: Ultima <ultima1252@gmail.com> To: Edgar Pettijohn <edgar@pettijohn-web.com> Cc: Fongaboo <freebsd@fongaboo.com>, FreeBSD Mailing List <freebsd-questions@freebsd.org>, Ian Smith <smithi@nimnet.asn.au> Subject: Re: STUMPED: Setting up OpenVPN server on FreeBSD (self.freebsd) Message-ID: <CANJ8om70jDb8DcYPxnJFpaUMw1Rc%2BYc%2BH1nx1zojJvXsA4omjQ@mail.gmail.com> In-Reply-To: <20170828030151.GB47551@FreeBSD> References: <mailman.1203.1503788746.74519.freebsd-questions@freebsd.org> <20170827164229.W23641@sola.nimnet.asn.au> <CANJ8om5GLVFZib4uPLgK4M2WW7HEeH8k5mHzo_S0hDN-D2CS=Q@mail.gmail.com> <alpine.BSF.2.20.1708272155040.50226@h4lix.wtfayla.net> <20170828030151.GB47551@FreeBSD>
next in thread | previous in thread | raw e-mail | index | archive | help
> Do you think I need to add those new dev statements to the client's OpenVPN config as well? No, those variables are per configuration specific. Other than missing my last suggestion by not relying on :network translation and the tcp to udp Edger mentioned the configuration should work assuming the sysctl net.inet.ip.forwarding is 1. In other words pfctl.conf: localnet = 10.8.0.0/24 > I don't see where you are assigning a network to > the tun0 interface. But maybe that is handled by openvpn. Not sure though. Yes, openvpn does handles this that is why the network should be defined and not translated when possible for pf. Are you only attempting to connect to sites in your browser? Can you try pinging known ips on the internet? I usually do 8.8.8.8. Basically from the last post not sure if you can only connect to internet, or just dns issues. Hope this helps, Richard Gallamore
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CANJ8om70jDb8DcYPxnJFpaUMw1Rc%2BYc%2BH1nx1zojJvXsA4omjQ>