Jump to content

PFSense PPTP


G-Stress

Recommended Posts

Guys I am a bit stumped. It's been a lil over a year and a half so I am very rusty, but I finally got my lab/rack environment set back up and I just installed the latest version of PFSense. I have got OpenVPN working, but my iphone has a problem connecting. I'll figure that out.

My issue is I have also enabled pfsense to serve as a pptp vpn. Problem is I can connect just fine, but I have no internet access when connected. I want to tunnel my traffic over the vpn. I've down about a days worth of googling and seen all the posts about creating NAT or firewall rules, but none that really mention how to create the rule to give connecting clients access to the local lan and internet.

A link to a good post or any info is greatly appreciated.

As far as config:

PFSense is doing all the routing and running dhcp with a subnet of:

10.13.37.1/24

In the PPTP config I have the PPTP server set at 10.13.37.240 and the start address at 10.13.37.150 which is just outside of the address pool.

DNS is set to googles DNS servers. Another weird thing I noticed is once I have configured the PPTP VPN I can no longer even view that section via Chrome. I can just fine in IE.

Link to comment
Share on other sites

I've started converting my clients away from pptp vpn, cause well, it's not secure, and they're failing PCI compliance scans with pptp. Go to ipsec, or openvpn.

https://sites.google.com/a/vorkbaard.nl/dekapitein/tech-1/how-to-set-up-ipsec-tunneling-in-pfsense-2-0-release-for-road-warriors

https://itunes.apple.com/app/openvpn-connect/id590379981

https://forums.openvpn.net/openvpn-connect-ios-f36.html

Link to comment
Share on other sites

Thanks for the quick reply guys. 5 minutes after I posted this topic I got it working. The whole time I've been looking through the firewall options I never noticed there was a separate PPTP VPN tab at the top. I selected the PPTP VPN interface and allowed ipv4 and 6 and TCP/UDP and it worked after that.

I have OpenVPN working as well, but not remotely. I need a solution that will work with PC/MAC and iDevices and Droids. I'm having a problem with OpenVPN config on my iphone. I know I need to edit it somehow, just not sure how I'm gonna do it and get it back to the iphone the way the app is.

I will also setup IPSecVPN. I want to get real familiar with all VPN technologies.

Link to comment
Share on other sites

  • 2 weeks later...

Thanks for all the info guys. I got PPTP up and working just like I want and I just got IPSec working on my iphone, but I'm confused a bit. I can connect just fine and have internet access though when I goto ipchicken it shows the wan ip of my iphone using IPSec. When I do using PPTP it shows my home WAN address.

I would like to if possible be able to access all machines on my home network using IPSec and route all my traffic through that as well. I just searched on tunneling my traffic over IPSec and it is directing me to configure settings in the "outbound" section of the firewall. The scenario is between 2 office buildings.

I guess I'm a little confused on how my traffic is being routed securely if it doesn't appear to be tunneled being that it is showing my WAN address of my iphone vs my home WAN address.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...