TrueNas OpenVPN & Local network access not working

[Dariusz1989]

Hey

Uhh.. new and green with this.
In any case I've followed some tutorials but I'm still failing.
I can access my NAS & Storage from Client, but pinging any other device on network does not work.
So perhaps some1 can help
I have no DHCP server on my local network.
The config as follows:

Nic1 Internat
192.168.0.0 < my Router (I believe) DHPC
192.168.0.10 < my TrueNas & OpenVPN

Nic2 LAN only
192.168.3.0 < my switch (I believe) - No DHPC - all is static ips.
192.168.3.150 < my TrueNas & OpenVPN - as service not jail
192.168.3.170 < Local only system

OpenVPN Server config
server:
192.168.4.0
Additional parameters
push "route 192.168.3.0 255.255.255.0" < this allowes me to access server again via:
ping 192.168.3.150 = works.
However if I do ping 192.168.3.170 which is another pc on network, I no longer get ping.
How can I properly push all trafic from openVPN network to my local network?

I'm a tad lost, I've seen lots of answers and posts on this but I could not get any of it work :- (

Regards
Dariusz

 

[Dariusz1989]

Ok got it partially working with tunable
natd_interface
igb1
RC
openVPN

But I dont know how to properly add second nic to that tunable.
Do I add igb1, ex1 or ibj1;ex or just enter, or just add second tunable... ?

 

[Dariusz1989]

Ok got it running!
So
I needed static route
Destination 192.168.4.0 and gateway 192.168.3.20(nas IP)
Then I needed these tunables

for natd_interface I used NIC2 Lan Only, not the internet one.
And boom I can ping stuff & all works! YAYAYAYYA!

 

[Dariusz1989]

Ok new problem!
I cant ping my Client from my local system now... uhhh

 

[Patrick M. Hausen]

I would recommend not to NAT. Instead add a static route to the OpenVPN network via your TrueNAS system to the device that is the default router in your 192.168.3.0/24 network.

If you cannot do that, but the DHCP settings in your network can be changed, you can make the TrueNAS system the default gateway. As long as the TN system itself has got a static default route to your IPS/whatever device, it will happily send ICMP redirects to all the clients for Internet directed traffic.