Networking Routing Issue

[lukesterboy]

Hi i have an dedicated ovh box running proxmox this has an ip of 145.xxx.xxx.xxx/24. I have a OpenVPN setup and pfSense setup. All traffic / servers go through pfsense.

 

OpenVPN gives clients a 10.8.0.0/24 ip

 

pfSense and LAN network is using 192.168.1.0/24

 

From pfSense on the WAN adapter i can ping the proxmox address but not from a virtual machine.

 

The problem i'm having is i can't access the 145 address when on the VPN/locally from within the server. For that i have to disconnect the VPN why would this be and how do i solve it? I can draw a network diagram if it helps.

 

Thanks.

[Electronics Wizardy]

6 minutes ago, lukesterboy said:

has an ip of 145.xxx.xxx.xxx/24.

Do you own those ips? Don't use those for a private network

 

Is that /24 under nat?

 

Did you add the static routers to pfsense/ to the vms?

[lukesterboy]

15 minutes ago, Electronics Wizardy said:

Do you own those ips? Don't use those for a private network

 

Is that /24 under nat?

 

Did you add the static routers to pfsense/ to the vms?

145.xxx.xxx.xxx is the ip of my proxmox/the main dedicated machine so yes i own it.

 

Yeh the 192.168.1.0/24 is under a NAT.

 

I think its something to do with the traffic essentially trying to route back to itself but i'm not 100% sure.

 

static routers? The static route from pfsense is just everything local to the gateway.

[Electronics Wizardy]

35 minutes ago, lukesterboy said:

145.xxx.xxx.xxx is the ip of my proxmox/the main dedicated machine so yes i own it.

You sure? are all those ips publically acessable? Check the owner on whois

 

36 minutes ago, lukesterboy said:

I think its something to do with the traffic essentially trying to route back to itself but i'm not 100% sure.

what does the route look like on a client? Traceroute?

[lukesterboy]

2 minutes ago, Electronics Wizardy said:

You sure? are all those ips publically acessable? Check the owner on whois

 

what does the route look like on a client? Traceroute?

Yep im sure, because my problem is accessing them when on the VPN / from locally. I can access fine when off VPN and routing over internet.

 

route from a client goes client -> openvpn server gateway -> pfsense gateway -> ovh gateway -> ??

 

Then after getting to the gateway it doesn't really do anything or go anywhere, im guessing this is because the ip routes out of gateway then tries to route back in, where as i need it to essentially route from pfsense straight to the proxmox ip, if that makes sense.

[beersykins]

This sounds like a kludgy mess bro.

 

A diagram would probably help.

On 2/24/2020 at 1:40 PM, lukesterboy said:

From pfSense on the WAN adapter i can ping the proxmox address but not from a virtual machine.

You likely need a return route for traffic in your VM space, you could verify by testing from the pfSense LAN side address/itnerface.