I have two TrueNAS Core servers (13U3.1) on my home network. The main one is physical while the secondary is a VM. I use OPNsense as my router and VPN server (OpenVPN).
The main LAN is 192.168.1.0/24 with the primary server on 192.168.1.21 and secondary .22. They both have multiple interfaces (Management, LAN, and a dedicated for replication). The default GW is set to be on the management interface. The OpenVPN subnet is 10.111.250.0/24 and is routed through OPNsense.
Everything works just fine internally, but this week, while I was travelling I noticed that the SMB shares on the main server were unavailable and the server could not be pinged remotely while connected through my VPN. On the same VPN connection I can ping and connect to the secondary server, as well as to other servers on the same LAN network. Once I got home, I was able to access those same share on the from the LAN as expected.
I quadruple checked the FW rules, OpenVPN config and routing and everything is allowed. I enabled logging on the vpn rules and I can see traffic from the vpn client to the primary server IP on port 445 being passed, as well as icmp.
I never changed anything manually on the TrueNAS servers, only used the GUI. Is there anything on the server itself that would block connection not coming from the same subnet? For curiosity I checked the hosts.deny and hosts.allow and they are empty as expected.
Both TrueNAS servers have the same network configuration and routes, yet I can connect to the secondary, but not the primary for some reason.
The main LAN is 192.168.1.0/24 with the primary server on 192.168.1.21 and secondary .22. They both have multiple interfaces (Management, LAN, and a dedicated for replication). The default GW is set to be on the management interface. The OpenVPN subnet is 10.111.250.0/24 and is routed through OPNsense.
Everything works just fine internally, but this week, while I was travelling I noticed that the SMB shares on the main server were unavailable and the server could not be pinged remotely while connected through my VPN. On the same VPN connection I can ping and connect to the secondary server, as well as to other servers on the same LAN network. Once I got home, I was able to access those same share on the from the LAN as expected.
I quadruple checked the FW rules, OpenVPN config and routing and everything is allowed. I enabled logging on the vpn rules and I can see traffic from the vpn client to the primary server IP on port 445 being passed, as well as icmp.
I never changed anything manually on the TrueNAS servers, only used the GUI. Is there anything on the server itself that would block connection not coming from the same subnet? For curiosity I checked the hosts.deny and hosts.allow and they are empty as expected.
Both TrueNAS servers have the same network configuration and routes, yet I can connect to the secondary, but not the primary for some reason.