PIA - pfSense VPN Route all LAN2 traffic out via VPN not working
Hello all,
I've just got a pfSense router and trying to route certain traffic from Network2 to the VPN connection.
I've followed https://www.privateinternetaccess.com/forum/discussion/29231/tutorial-pia-on-pfsense-2-4 and have the VPN connection setup etc., but been unable to connect to the internet from my LAB_LAN and any device on it.
My setup is
WAN PORT
HOME_LAN
LAB_LAN
Plan is to have everything from HOME_LAN go out WAN as normal and not through the VPN, while everything on the LAN_LAB network goes through the PIA VPN tunnel.
When pinging Google (8.8.8.8) I can see the pings are trying to go out, but seems like there isn't a route or something. I've had a quick look at the firewall rules (allow all) and can't see anything blocking.
NAT Configuration:
Been scratching my head for a few hours or so now and can't figure it out.
Thanks
I've just got a pfSense router and trying to route certain traffic from Network2 to the VPN connection.
I've followed https://www.privateinternetaccess.com/forum/discussion/29231/tutorial-pia-on-pfsense-2-4 and have the VPN connection setup etc., but been unable to connect to the internet from my LAB_LAN and any device on it.
My setup is
WAN PORT
HOME_LAN
LAB_LAN
Plan is to have everything from HOME_LAN go out WAN as normal and not through the VPN, while everything on the LAN_LAB network goes through the PIA VPN tunnel.
When pinging Google (8.8.8.8) I can see the pings are trying to go out, but seems like there isn't a route or something. I've had a quick look at the firewall rules (allow all) and can't see anything blocking.
NAT Configuration:
Been scratching my head for a few hours or so now and can't figure it out.
Thanks
Comments
ping google.com
If the first option above (google) and no reply it is a DNS issue
You may have to set up a route in the route table.
What route would I need to allow? The LAB_LAN network is on 10.10.0.0/22 ?
Thanks (Ignore the WAN internal IP, currently got sat behind old router to configure pfsense while not bringing internet down for all.)
If you local machine is getting the PIA local IP address then you are making it to the server. The route table will tell the local machine where to send its data. On my local machine I have many routes but only two really count.
First route
Connection-specific DNS Suffix . :
IPv4 Address. . . . . . . . . . . : 192.168.1.130
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
Second route
Connection-specific DNS Suffix . :
IPv4 Address. . . . . . . . . . . : 10.11.10.6
Subnet Mask . . . . . . . . . . . : 255.255.255.252
Default Gateway . . . . . . . . . :
The first route is my local lan inside the house. The second is the PIA adapter. This is the tunnel that passes through my router (local lan link) and then on to the PIA server.
I would first see if I can ping the router from the local machine. Ping the Default Gateway. You should have no issues doing that. If that passes then the problem is probably in the router. I see that you are using OpenVPN, is that correct? Then the issue might be in the configuration file that tells OpenVPN what to do and where to go.
Couple of years ago I did the OpenVPN thing with PIA. Took me some time to figure out that the config file was not programmed correctly. I really don't recall now what the fix was, but it truly was a config/route issue.
Hope this gives you some ideas where to look. If you are still having issues you can open a ticket with tech support. They are busy but will get back with you.
One more thing, you might need to tell Pfsense to allow MAC address of the PIA adapter to pass through, or words to that effect. That would be a hardware rule if you have such a thing,