[kwlug-disc] pfsense + HomeHub 2000 (setting up a OpenVPN server)
Paul Krzyz
pekrzyz at yahoo.com
Mon Jun 12 14:43:56 EDT 2023
The article you linked to shows how to setup a VPN server on your pfSense device, so you can remote into (lets assume at your house) it from outside your home from the internet.
If you're setting up a HomeHub 2000, I am assuming you're with Bell or one of its subsidiaries, since 3rd party resellers don't have access to HomeHub modems. You have 2 options using pfSense with OpenVPN with a HomeHub 2000 modem.
You can use the HomeHub modem as configured from Bell and login to the Bell router Web Gui, and create firewall rules to open access for the OPENVPN ports.
The second choice is to turn the HomeHub into a dumb modem by putting it into bridge mode. This turns off the following services in the HomeHub: DHCP, DNS, FIREWALL and other less important services. If you have additional services from Bell that are running off of the HomeHub, such as TV, Bell VOIP (offered for business clients), access point pucks, this may mean that you CAN NOT use bridge mode, since these devices integrate with the HomeHub software on the modem.
If you do use bridge mode, you need to save your login credentials (found in the HomeHub Web Gui), because your pfSense needs to use these when configuring the PPOE service on the WAN interface.
Your pfSense would then need to run the DHCP, DNS services as well as the Firewall. This avoids double network address translation (NATing) and less lag, which would occur if you DO NOT put your Homehub into bridge mode.
Putting the HomeHub into bridge mode will not work if you are using the 'Bell Home & Rural' internet service, which uses the HomeHub over an LTE Cell connection, which Bell offers. Don't even try doing this if you have Bell Home & Rural, since this bricks the Homehub and you have to get it replaced. (I speak from experience here).
I'm not sure what you mean by 'Unfortunately, I do not have easy access to an external network with enough data.'
To test if OPENVPN is up and running doesn't require much data, you can check the gateway status for the OPENVPN connection, and you should see if the CLIENT AND SERVER are both up and running and have established a connection. This might be doable with a laptop and cell phone being tethered as a hotspot.
I have setup my clients where I use 2 pfSense routers. One is server mode, and the other in client mode. The most common configuration I've used is point to point OPENVPN, where I want to bridge 2 offices in different locations together.
...Paul
On Monday, June 12, 2023 at 01:00:08 p.m. EDT, Federer Fanatic <nafdef at gmail.com> wrote:
hi, wondering if anyone has this kind of setup. I made a point of followingthe following: https://www.wundertech.net/how-to-set-up-openvpn-on-pfsense/ Unfortunately, I do not have easy access to an external network with enough data.
I wonder if I could use another VPN client connection and then use that to test the connection.
--------------------------------------------------------------
Roger Federer Fanatic Extraordinaire :-)_______________________________________________
kwlug-disc mailing list
To unsubscribe, send an email to kwlug-disc-leave at kwlug.org
with the subject "unsubscribe", or email
kwlug-disc-owner at kwlug.org to contact a human being.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://kwlug.org/pipermail/kwlug-disc_kwlug.org/attachments/20230612/52762b53/attachment.htm>
More information about the kwlug-disc
mailing list