PfSense with single NIC as openvpn server/client behind NAT. Maybe?

D

Dmitry2014-11-24 23:28:35

openvpn

Dmitry, 2014-11-24 23:28:35

There is a need to install an openvpn server/client behind a gateway (Mikrotik), is it possible to install pfSense as one? I tried with ubuntu - everything is fine, but you need a normal web interface for vpn and a certificate manager. PfSense craves two interfaces, how to wean it from this?

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

E

Eugene, 2015-07-22
@hempy80

It works for me with one physical interface, but in pfsense itself there are still two of them, with the help of VLANs, traffic for WAN and LAN interfaces is separated. At the same time, pfSense itself is behind NAT, holding IPSec. The provider comes to Mikrotik RB750, it is painfully bad with encryption, the CPU loads in full, I had to transfer encryption to pfSense.

V

vetash, 2014-11-30
@vetash

Is this where he longs for? When installing?

D

dlange, 2018-07-28
@dlange

I did this:
You need to disable NAT
1. Transfer NAT to Manual Outbound NAT rule generation (AON - Advanced Outbound NAT)
2. In the NAT rule you need, check the box for Do not NAT and click Save.
Thanks to the kind person: forum.pfsense.org/index.php/topic,54771.0.html
And then we set up openvpn as usual. Let's not forget about the rules.