Redundant OpenVPN problem

damianhl

Hello Forum!!!

We had working OpenVPN through 2 WANs, but I recently tried to add another WAN and now only one is working
OpenVPN is configured with "Localhost" as interface
We had 2 nat rules (And the firewall rules) to forward UDP 1194 to 127.0.0.1
I just added the 3rd nat rule for WAN3 and when I try to connect to the 3rd public IP (Public IP of WAN3), I get this:

Fri Sep 02 11:19:37 2022 TCP/UDP: Incoming packet rejected from [AF_INET]IPaddress2:1194[2], expected peer address: [AF_INET]IPaddress3:1194 (allow this incoming source address/port by removing --remote or adding --float)

IPaddress2 is the address of WAN2
IPaddress3 is the address of WAN3

Any ideas?

Thanks in advance.
Regards,
Damián

damianhl

@damianhl
Another question, is there a way to check in the pfsense, which wan are clients connecting to?

Regards,
Damián

damianhl

@damianhl
Ok, forget about the first question, that was like a bug with openVPN client, after restart it, does not happen again.
It seems it happen after you connected to a different WAN

I still have the doubt about how to check from the pfsense, which interface clients are using to connect. I cannot find any log related. In the dashboard appears the source public IP, not the destination IP.
Is there a way?

Thanks in advance.
Regards,
Damián