Boa tarde, O Open-VPN funciona bem no pfsense se você segue as seguintes descrições: https://docs.netgate.com/pfsense/en/latest/vpn/openvpn/openvpn-remote-access-server.html https://docs.netgate.com/pfsense/en/latest/vpn/openvpn/using-the-openvpn-client-export-package.html Gostaria de mencionar que o suporte oficial ao Windows 7 terminou, portanto lembre-se disso por questões de segurança. isso causa um problema: [image: 1590517786999-bd25ae00-1dec-40ed-9447-24049653c980-image.png] Cumps, C

As addresses of RAS VPNs are handed out via DHCP there's no way I know of, that you could persuade the server to hand out a dial-in client more then one IP.

@Rico Thank you for noticing my post. This is my layout The pfSense2 is my Public Firewall or gateway. INTERNET == pfSense1 (Client) --- LAN B (192.168.140.0/24) --- PC B (192.168.140.10) || pfSense2 (Gateway) --- DMZ net (192.168.88.0/24) --- pfSense3 (Server) --- LAN (192.168.8.0/24) LAN B and LAN A can communicate properly except that I am unable to push DNS to LAN B pfSense3 which is both the DNS and OpenVPN server. PC B can ping pfSense3 LAN 192.168.8.1 and WAN 192.168.88.7 but I cannot ping pfSense2 LAN 192.168.88.5.

[image: 1590420908925-0d3ea926-0ee8-448a-b636-d2f2ae2835a6-image.png] This is a selectable list. So select your EXPRESS as the default gateway ... ) Like : @Gertjan said in ExpressVPN OpenVPN won't work: While here System > Routing > Gateways, select / activate the "VPN CLIENT" gateway as the default "Default gateway IPv4".

@johnpoz I still have some 32 bit apps that i can not do without... and as far as I know Catalina doesn't support 32bit anymore.

@DominikHoffmann said in Help with adjusting the VPN port: @JeGr, how do mark this topic as “[Solved]” in the topic subject line? Can I? not exactly marking it but you can edit your OP and write a [Solved] in your topic line yourself - that works just fine.

@Rico it is temporary in that the situation does not survive a pfSense reboot. I am working remotely right now, but was able to ssh into the box, in order to reboot it. As for rebuilding the configuration from factory settings, that will have to wait. Also, it seems that renaming an interface not part of an active OpenVPN connection does not cause a loss of connectivity the the LAN.

@helenodss said in VPN error when connecting to client...: (check your network connectivity) There is normally the BIG clue.. Can this client ping your vpn IP? Do you see an connection attempt in your openvpn log on pfsense from this client? It just very well might the simple he can not get to you issue. Then figure out why.. Maye where he is at blocks the port your using for vpn..

Oh okay Thanks alot man! :) didnt think of that actually.

if you have Automatic outbound NAT or Hybrid ,the NAT rule will be created automatically if it is manual you need to create it.

@Gektor Link to video?

i have some google home stuff with embedded 8.8.8.8 on it, I only use NAT, Port Forward to redirect all query to my dns server

@viragomann thanks, will do.

Hi, Because of the differences, is it still a question for me which pfSense version is this? (for example, it's a difference...) [image: 1589966065569-a5e04914-dd2a-4541-837e-1c1e7326f70d-image.png] The second important thing is server mode (you use TLS), but that's all I see: [image: 1589965625870-a4666822-e747-4e05-9657-82e796510e7c-image.png] instead of: [image: 1589965661226-0b4e10a0-be71-4b2c-ad2c-d118a3478c69-image.png] I don't see your own cert for the connection either: [image: 1589965717587-8b5bbbd9-235b-4183-94a3-d0bd6e1d3d4e-image.png] instead of: [image: 1589965778044-8fd16d58-39b6-45f3-a24c-c4f941401cf3-image.png] like: [image: 1589965880180-ff6291f2-6a01-4d33-866c-1f5c2019df89-image.png] and even a VPN User is required: [image: 1589965936182-3397cc2b-5bbd-4e55-933a-bccc0f134c07-image.png] with: [image: 1589965989354-a4585c69-0d7d-49a8-8bc9-792285643332-image.png] exactly where does the DNS (10.0.1.31) point?? this is the box itself or a separate DNS server on the network

Hi, View /etc/inc/openvpn.inc. Locate the several function calls and definition at the bottom of the function called : openvpn_add_keyfile This function takes the directory, the extension, the PEM based64 encoded data and writes out the file. File rights are set to 0600 and that's it. It's line 760 in the openvpn.inc file. If something goes wrong at that place, I guess the $data that gets base64 decodes isn't 'ok' ? Is your cert ok ? Many cert type files are created using that function. When only "server1.cert" goes wrong, I gues it's input (= $data) is 'wrong'. An old 2.4.4-p3 bug that got resolved (?) ^^ edit : non. openvpn server was working just for for my when I was using 2.4.4-p3.