• No network folder access over OpenVPN

    7
    0 Votes
    7 Posts
    1k Views
    JKnottJ

    @monden2

    Windows file sharing uses broadcasts to announce it's presence to other devices. Since broadcasts are not passed by routers, you don't see the shares. You'll have to use the host name or IP address to set up a connection to that share.

  • OpenVPN CA lifetime too short howto fix ? [SOLVED]

    10
    0 Votes
    10 Posts
    1k Views
    noplanN

    so i've done it the old school way
    kind of doing some clean up in user name and settings and cleaning up style.

    Certificate Manager --> Certificate Revocation --> Certificate Revocation List added CRL to openVpn Server revoked all vpn-user Certs via CRL revoked openVpnServerCert controlled via System --> Certificate Manager --> Certificates disabed vpn-users System --> User Manager --> Users

    so far ...

    added new Certs changed Certs on openVpn Server adden new CRL to openVpn Server created new users testet

    works like a Charm and it feels good ;)
    so [solved]

    Thanks for helpin me out.

  • Prevent user installing OpenVPN

    3
    0 Votes
    3 Posts
    381 Views
    GertjanG

    Look also at https://forums.openvpn.net/viewtopic.php?t=24703
    It boils down to : if you can't trust the humans that operate your devices ....

  • FIrst config. OpenVPN

    8
    0 Votes
    8 Posts
    798 Views
    H

    @Bob-Dig is this correct?

    Senza titolo.jpg

  • 0 Votes
    7 Posts
    3k Views
    P

    @NogBadTheBad Yep, or just add a blacklist to an IP range individually.

  • One OpenVPN user can access browse the LAN, Others Can't

    1
    0 Votes
    1 Posts
    220 Views
    No one has replied
  • OpenVpn nat 1:1 virtual ip to lan ip

    1
    0 Votes
    1 Posts
    167 Views
    No one has replied
  • TSL Handshake Errors After Months of No Errors

    Moved
    7
    0 Votes
    7 Posts
    679 Views
    jimpJ

    If you connect via SSH you can monitor the log directly and, if you set a large scroll back buffer in the client, can capture more logs. From the shell, run clog -f /var/log/openvpn.log

    Or setup a syslog server and export the logs there for more/long term storage.

  • OpenVPN with RADIUS via Active Direcotry Authentication failed

    Locked
    9
    0 Votes
    9 Posts
    3k Views
    dotdashD

    One day I'll come here and there won't be someone bumping a three year old thread for some vague, dissatisfied reason. One day.

  • Client Stuck in "Connected" State - TLS keys out of sync

    2
    0 Votes
    2 Posts
    321 Views
    No one has replied
  • Assign static IP for multiple devices with the same user

    1
    0 Votes
    1 Posts
    195 Views
    No one has replied
  • OpenVPN Routes to Remote sites

    4
    0 Votes
    4 Posts
    460 Views
    V

    @heathstiles said in OpenVPN Routes to Remote sites:

    The sites are connected using IPsec Site to Site VPN tunnels if that makes any difference.

    You didn't mention above. Of course is that different.

    So will have to add an additional phase 2 in the IPSec configuration for the respective local network and the OpenVPN tunnel network.

  • best pfsense appliance for openvpn

    4
    0 Votes
    4 Posts
    516 Views
    X

    @JKnott said in best pfsense appliance for openvpn:

    @akuma1x

    Also, how much traffic is going off the local network? There's a big difference between mainly using local servers and going to the Internet for everything.

    I agree with jknott I think its better to plan that out first..

  • OpenVPN Version 2.4.4 - Can't install Windows exported client

    6
    0 Votes
    6 Posts
    752 Views
    RicoR

    Glad you have it working now.

    -Rico

  • Site-to-Site VPN

    5
    0 Votes
    5 Posts
    637 Views
    jimpJ

    It looks similar there but between the formatting and other info it's hard to say.

    Compare the actual OpenVPN config file in the profile from the Access Server with the client configuration made by pfSense under /var/etc/openvpn/

  • Help with VPN server to vLan network

    1
    0 Votes
    1 Posts
    195 Views
    No one has replied
  • Config management interface make unable to contact daemon

    1
    0 Votes
    1 Posts
    216 Views
    No one has replied
  • 0 Votes
    4 Posts
    504 Views
    X

    @bingo600 I just added an additional interface for openvpn client. If you want to ask feel free to ask, not starting like that. And the reason I couldn't post anymore because this is a new account, the forum limits my time to post, I was fixing this earlier and I want to post a lot of times.

  • 0 Votes
    6 Posts
    3k Views
    L

    Thanks for the feedback. The MS RADIUS server has no static address specified by default but it does offer the above 172.16.0.0/16 subnet though it's not "user configurable" (I discovered it looking at the logs - there are no such setting in the NAP/RADIUS mmc) unless you probably manually edit the registry (there was no RRAS service previsouly enabled to set them). By removing the 2 above attributes it works as desired using subnet topology without further modifications which is fine for me.

    Cheers

  • 0 Votes
    8 Posts
    4k Views
    S

    Hi,

    with pfSense 2.4.4, it's possible to "force" the ip server to connect :

    In the "Client Export Utility", "Client Connection behavior" heading, select "Other" for "Host Name Resolution". A second field appears "Hostname" and indicate in the hostname (dyndns, etc.) or public ip of the box...

    The next exe client generated will had the good public ip or hostname !

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.