RDP through VPN without split-tunnel PfSense
If you have a PFsense gateway you can already set the gateway as a VPN client, but what if you don’t want that, and instead you want to set the VPN connection on a machine/machines behind a PFSense gateway, but you don’t want to set split tunnel on that machine and also you want to be able to have some services that are ported forward through the gateway and they must be accessible outside of the LAN even if that machine is connected to VPN.
One simple solution is to rewrite any incoming connection on a specific port as if it comes from the LAN with this approach you can have the benefit of an interrupted connection with some specific services even if you connect or disconnect on VPN, and you can also control that VPN connection from the machine behind the router not from the router directly. View full article