hi all,

my problem was when i set up an openvpn server on my pfsense fw, as the pfsense fw is the 2nd public fw, our main public fw is TMG, our main TMG fw we have set static routes to and from our main VLAN switch, so when our VPN clients connect to pfsense fw they couldnt access any remote networks apart from the LAN that pfsense fw is on, even when i set up the static routes for each VLAN on the pfsense fw and added the other remote subnets on the openvpn server

the solution was to create a static route on my main VLAN switch for my virtual VPN network and the gateway was set to the openvpn server ie pfsense fw and now my VPN clients can connect to remote networks not just the LAN that the pfsense was on

rob

I would never intall TMG if I have pfsense on my network.

same here mate but TMG was installed before pfsense was, i just installed pfsense as our back door in, incase TMG goes down, i would never trust a fw on windows!

have you ever configured pfsense with load balancer and failover and squid and squidguard proxy server? load balancer is working failover is working but proxy has problem with second wan. other traffic is running just proxy has problem when first wan is down.

no i have not as i dont have two public ip addreses (one public ip for pfsense a and one public ip for pfsense b)

and also you need to create a new vlan for it aswell on your switch so the 2 can communicate (or just have one spare nic on both pfsense machines so the 2 can talk)

have you checked this out

https://doc.pfsense.org/index.php/Co...dundancy_(CARP)

yes but i am using only one powerful machine with 4 NIC cards. 2 wan 1 lan and 1 captive portal. So failover works but only proxy does not work. I thing I have to dig more backup is good idea.

sorry paul havnt done it otherwise i would help, ask pfsense forum, there really helpfull

it's ok thanks