• How to use pfSense OpenVPN and Dynamic DNS address

    4
    0 Votes
    4 Posts
    10k Views
    M

    This is fairly straightforward. When exporting your clients, choose "other" in the Host Name Resolution box and enter your Dynamic DNS FQDN.

    If you don't want to re-export existing clients, you can manually edit the client's .ovpn file and replace the IP with an FQDN on the remote line.

  • VPN configured successfully but local DNS not resolving

    3
    0 Votes
    3 Posts
    470 Views
    S

    Thank You John,

    I fixed the problem, I forgot to add DNS server in the configuration. It is done and it is working fine.
  • OpenVPN error

    17
    0 Votes
    17 Posts
    8k Views
    A

    ok, laptop VPN works and was able to log into pfsense. Uninstalled OpenVPN and re-ran the exported EXE and it installed OpenVPN. So I think I should be good to go now.

    Thank you so much to those who pitched in. This is pretty much the first success with anything other than base configuration that I have gotten to work. Still a little confused about the subnetting stuff above, but I'll take this as a win.

  • Possible Bug using VPN's DHCP or PPPOE in WAN Interface

    Moved
    8
    0 Votes
    8 Posts
    2k Views
    C

    i wouldnt know.. why cant pfsense know if the WAN connection is a private or public IP... so much for just simple
    Asus router.. you set it for DHCP or PPPOE no problems it does it for you you dont need to know anything

    i know basics 192.168.x.x is private network.. 174.x.x.x is public
    NordVpn said its a issue with Pfsense
    i posted in the forums and no one could answer the question.. one guy wouldnt even look at the video to see my problem he didnt try to help if he watched it then he would see what problem i having.. just get bashed more for even trying..

    its like taking your car to a mechanic you tell him what your issue is you video tape your issue but he cant be bothered to look at it and say your wrong you dont know what your talking about your not having a problem

    i didnt scream bug i asked a question there is no screaming i never wrote caps
    i wasnt the person that said i i not going to watch your video to see what problem im having from other guy..

    and you say the difference from Public and Private.. shouldnt pfsense know what a Private IP and Public IP on the Wan connection and route it properly by just choosing your options PPP PPPOE STATIC DHCP etc

    as i figured once you set your WAN interface thats your internet.. and when you set your lan or the OpenVPN Server to connect to the WAN interface

    its like WAN interface is like an interperter you speak english to the interpertor and the WAN connection automaiclly interpertes like french it to the internet accordling

    but im guessing this stuff is more complex then just choosing

    guess ill do more research since there are no discussions on to set WAN interface for OpenVPN not to use PPPOE

    as i dont understand why i get blasted for using PPPOE what is wrong with using pfsense to log in PPPOE its like a death using it.. but its option when you setup pfsense from a factory reset or new install.. choose dhcp or pppoe etc
    and OpenVPN server remote access works fine in PPPOE but doesnt in dhcp mode
    and NordVPN cant use PPPOE as it ruins there connection they say guess they need a private ip address not your public ip address..

    but i didnt cause problems like i said guy from start was disrespecting me not even bothering to read i stated i had 2 problems didnt wanna look at a video to see what problems i dealing with.. all i got was basiclly bashing..
    i ask for serious help and i get bashed that i idiot for using PPPOE
    we simple home user people arent using this pfsense software day in day out like you networking people..

    but thanks for the reply.. since i apparently screaming i not going to get help from the other forum.. and like i said i never screammed nothing i get blasted by the other guy... where is the help to novice home users

    i just gonna keep my mouth shut in the other forms not reply i dont wanan cause problems i didnt ask to get in trouble didnt mean to sound screaming i just wanted to be respected and i didnt get respect right from the get go

    thanks for your replies.. i wont distrub you either.. sorry i caused so much problems

  • WAN Interface OpenVPN Bug question..

    Moved
    42
    0 Votes
    42 Posts
    7k Views
    C

    not sure what a RasPi is
    but i guess ill google how to port forward so OpenVPN Server REmote access setup then

  • This topic is deleted!

    1
    0 Votes
    1 Posts
    37 Views
    No one has replied
  • Is there a way to use Remote Access on WAN DHCP

    8
    0 Votes
    8 Posts
    927 Views
    C

    and i followed the CrossTalk video steps to do this and there is no 1194 in it that i set
    https://www.youtube.com/watch?v=Q6YbCQEiC3c

  • error in connecting openvpn client

    7
    0 Votes
    7 Posts
    690 Views
    J

    @gertjan client vpn is behind the firewall and it is blocking the traffic ..now it is working fine ...thanks for your support

  • OpenVPN Service not running

    2
    0 Votes
    2 Posts
    647 Views
    DerelictD

    @p9wgnzxcsd said in OpenVPN Service not running:

    remore-cert-tls

    Did you add any extra options in the advanced config? Maybe mistyped remote as remore?

  • To VPN or not to VPN?

    3
    0 Votes
    3 Posts
    818 Views
    L

    @johnpoz said in To VPN or not to VPN?:

    "I think I read that you can bind specific applications to a specific NIC."

    Good luck with that ;)

    If you want to bypass using your vpn, easy way to do it is based upon policy routing.  So where you want to go bbc iplayer - what is the url you connect to?  I could be as simple as creating an alias putting in the sites you want to go to and using that alias as your dest in rule that send that traffic out your normal wan.

    Depending on the site you may need to do some investigation on what exact networks they use via some CDN in the backgroun that is not really clear in just the url you use to get started, etc.

    Other option to this is to do it the other way around, use your normal wan for most of your access and just send the traffic you want out the vpn - sometimes it is easier this way since sites you want to vpn might be smaller, etc.

    Not sure where you got the idea that applications allow you tie them to specific nic or IP - this is pretty rare in the windows world for sure, and in client applications.  Server applications are more likely allow you to tie them to a specific nic or IP..

    There may be some addons for the browser your using that add this sort of feature..  But to be honest policy routing better solution if you ask me, since then doesn't matter if the application supports it or not.

    Thank you to both of you, I just went online to see if someone is also experiencing the same thing with VPN and I'm happy I found a solution.

  • openVPN not able to use hardware crypto.

    4
    0 Votes
    4 Posts
    961 Views
    V

    No, that is correct.
    AES-NI is not available here in the droptown, but it is used anyway.

    In pfSense 2.3 it was still available there, however the recommended selection for AES-NI capable CPUs was to select "No hardware crypto". But it has to be enabled in the System > Advanced options.

  • Bug maybe? NordVPN and Remote Access Vpn

    1
    0 Votes
    1 Posts
    365 Views
    No one has replied
  • Android VPN Waiting for Server Reply

    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • OpenVPN service failing after move from 2.3 to 2.4

    4
    0 Votes
    4 Posts
    513 Views
    jimpJ

    FreeBSD 11 isn't technically supported until ESX 6.5 so it's possible you have a compatibility issue causing stability there as well.

  • openVPN won't reconnect.

    1
    0 Votes
    1 Posts
    343 Views
    No one has replied
  • OpenVPN with Google Cloud PFSENSE (Only 1 WAN) with Remote PFSENSE

    1
    0 Votes
    1 Posts
    368 Views
    No one has replied
  • Multiple VPNs; Manual intervention on Restart

    3
    0 Votes
    3 Posts
    601 Views
    P

    @protar
    Nope, nothing to do with Android. the pfSense is a OpenVPN client to a few servers. It was indeed a DNS issue then getting stuck in a routing or nat loop. I'm still looking into ways to delay the other vpn connections to start so that I can use my internal DNS server that utilizes the first VPN connection outbound.

  • Openvpn / PIA requesting port

    1
    0 Votes
    1 Posts
    254 Views
    No one has replied
  • Transparently move OpenVPN from one pfSense FW to another?

    5
    0 Votes
    5 Posts
    595 Views
    D

    Thanks.

  • How to block access from roadwarriors

    5
    0 Votes
    5 Posts
    659 Views
    NogBadTheBadN

    @maverick_slo said in How to block access from roadwarriors:

    @unaibg
    You can totally do it with rules and client overides.
    Assign static IP to that client, and make rules that fit your situation.
    Its just as secure as separate tunnel.. IF rules are smart designed of course 😉

    I assign clients specific IP addresses via Freeradius.

    "ipsec-test" Cleartext-Password := "PASSWORD-WAS-HERE", Simultaneous-Use := "1", Expiration := "Jan 01 2020", NAS-Identifier == strongSwan Framed-IP-Address = 172.16.8.254, Framed-IP-Netmask = 255.255.255.0, Framed-Route = "0.0.0.0/0 172.16.8.1 1"
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.