According to this article https://openvpn.net/vpn-server-resource ... ss-server/, combining the setting of "Should clients' Internet traffic be routed through the VPN" with "Should VPN clients have access to private subnets" is not possible on an access server,
Is there any recommended solution for a situation where this combination is required?
Thanks,
Assaf
Combine routing of internet traffic with accessing private network resources
-
- OpenVpn Newbie
- Posts: 2
- Joined: Mon Mar 28, 2022 11:33 am
- openvpn_inc
- OpenVPN Inc.
- Posts: 1332
- Joined: Tue Feb 16, 2021 10:41 am
Re: Combine routing of internet traffic with accessing private network resources
Hello Assaf,
I have read the article 3 times from top to bottom but cannot come to the same conclusion as you have. It is possible to route client Internet traffic through the VPN server and allow access to private subnets at the same time. I do not know why you think it cannot be done. Perhaps if you could explain more clearly what the problem is?
Kind regards,
Johan
I have read the article 3 times from top to bottom but cannot come to the same conclusion as you have. It is possible to route client Internet traffic through the VPN server and allow access to private subnets at the same time. I do not know why you think it cannot be done. Perhaps if you could explain more clearly what the problem is?
Kind regards,
Johan

Answers provided by OpenVPN Inc. staff members here are provided on a voluntary best-effort basis, and no rights can be claimed on the basis of answers posted in this public forum. If you wish to get official support from OpenVPN Inc. please use the official support ticket system: https://openvpn.net/support
-
- OpenVpn Newbie
- Posts: 2
- Joined: Mon Mar 28, 2022 11:33 am
Re: Combine routing of internet traffic with accessing private network resources
Actually this paragraph from the article https://openvpn.net/vpn-server-resource ... tup-wizard made me think that the two cannot coexist
I will update in case additional issues happen here or will open a new thread in case of a different problem,
After viewing the configuration in the admin I saw that subnets ip ranges were actually missing. Adding them made things work> Should private subnets be accessible to clients by default?
Explanation: This option defines the default security setting of your OpenVPN Access Server. When Should client traffic be routed by default through the VPN? is set to no, it defines the list of subnets that your VPN clients are able to access. You are able to add more entries to this list once you login to the Admin Web UI area. This option will have no effect if Should client traffic be routed by default through the VPN? is set to yes.
I will update in case additional issues happen here or will open a new thread in case of a different problem,