Cannot access SG500-52P GUI via pfSense/ OpenVPN remote access

eforslund · ‎12-21-2017

Hello,

I am still a bit of a novice with the Cisco SG500 series of switches but currently have an SG500-52P and SG500-28P in my nextwork. THis may be a dumb question but I am not sure what I need to do for the following problem I am having.

I have a pfSense firewall (running the latest rev- 2.3.2 I believe) with the firewall functioning as the router as well.

My LAN is divided into 5 subnets on 4 separate physical interfaces from the pf box to 5 ports on the master switch (SG500-52P):

192.168.1.0

192.168.2.0

192.168.3.0

192.168.4.0 (4 and 5 on same interface)

192.168.5.0

All interfaces for the 5 subnets are 1.2, 2.2, 3.3 etc. From physically within my LAN, I can ping and access the SG500-52P and 28P switch GUIs from any subnet. My computer has a DHCP (also done by the pfSense box) address of 192.168.1.xxx (usually 182). Again, no issues accessing the switches or pinging any nodes on any subnet- all good. The issue is when I VPN into the pfSense (using OpenVpn). It is recommended that the subnet/ DHCP range for the VPN clients be one that isn't used as LAN subnets so I set it as 192.168.0.0 with ip range of 0.2, 0.3, etc. Via the VPN, I can ping and access all node on any of the LAN subnets such as NAS's on 192.168.2.0 with no problem but cannot ping or access and of the Switch GUI's (192.168.x.2) and conversely cannot ping the VPN client from the switch either. I am sure there is a very easy solution that I am overlooking but I is driving me crazy!

Thanks for any help you can give this poor novice and go easy on me please!

Iliya Gatsev · ‎12-22-2017

Hi,

My name is Iliya Gatsev from Cisco Technical Support Team.

Please open a case with Cisco Technical Support. Here is the contact of the technical support :

https://www.cisco.com/c/en/us/support/web/tsd-cisco-small-business-support-center-contacts.html

Iliya Gatsev
Cisco TAC Network Engineer
Together we are the human network .:|:.:|:. CISCO