Agreed. That is the reason that I do not need it. What I need is to find out why connected clients to vpn do not have Internet access.
Is it an issue with the tunnelblick client in os x or do I need to fix something in the Pfsense box? Best regards Kostas Sent from my iPhone On 11 Δεκ 2014, at 12:11, Volker Kuhlmann <hid...@paradise.net.nz> wrote: >> did you configure tunnelblick to send *all* traffic to the vpn? if so, you >> have to add allow rules to the openvpn interface to permit that traffic, >> and probably set up a NAT on there as well. > > If the network the client is connecting from (e.g. while travelling) is > in any way not totally trustworthy it would be prudent to at least route > the DNS traffic through the tunnel, if not all traffic. The VPN should > protect from all MITM attacks and snooping between the VPN client and > server. > > Volker > > -- > Volker Kuhlmann is list0570 with the domain in header. > http://volker.top.geek.nz/ Please do not CC list postings to me. > _______________________________________________ > List mailing list > List@lists.pfsense.org > https://lists.pfsense.org/mailman/listinfo/list _______________________________________________ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list