Openvpn and pia issue

techy82

Hi

for some reason since the latest update (2.4.0-BETA (amd64)
built on Wed Jun 21 01:52:48 CDT 2017 )

I am unable to connect to pia

I keep getting

Jun 21 19:40:29 openvpn 85600 [] Peer Connection Initiated with [AF_INET]IP:PORT
Jun 21 19:40:30 openvpn 85600 SENT CONTROL []: 'PUSH_REQUEST' (status=1)
Jun 21 19:40:30 openvpn 85600 AUTH: Received control message: AUTH_FAILED
Jun 21 19:40:30 openvpn 85600 SIGTERM[soft,auth-failure] received, process exiting

any ideas, nothing has been changed in the config, and i can connect to pia with my username and password fine?

Thanks very much

pfBasic

Thanks for posting this, I just posted a thread in the OpenVPN section about the same issue.

https://forum.pfsense.org/index.php?topic=132539.msg728696#msg728696

I thought that it might have something to do with the latest BETA, but wasn't sure.

psulions5

Same here - OpenVPN is completely broken in the latest snapshot.

psulions5

Any easy way to downgrade versions using the UI?

pfBasic

+1, or any idea when this might be fixed?

EDIT: It looks like this was probably a PIA issue? But it did only seem to affect pfSense connections as PIA was still reported up using the same configs/servers via desktop clients and Tomato routers.

techy82

I installed a pfsense update and openvpn pia is running again, but traffic isn't routing through it for some reason

jimp

No problems here with any of my own tunnels/setups. Given that everyone is complaining only about PIA, and the client wouldn't have any bearing on AUTH_FAILED (that's a message back from the server), this could only be a PIA issue.

If your problem started around the time of a snapshot update, it was purely coincidence or because of the reconnect and NOT because of anything that changed in OpenVPN.

It's possible PIA was updating their own systems to also implement OpenVPN security patches and something got fumbled on their side. I imagine a lot of VPN providers were in a bit of a panic yesterday since they are huge targets for abuse/exploit attempts.

techy82

@jimp:

No problems here with any of my own tunnels/setups. Given that everyone is complaining only about PIA, and the client wouldn't have any bearing on AUTH_FAILED (that's a message back from the server), this could only be a PIA issue.

If your problem started around the time of a snapshot update, it was purely coincidence or because of the reconnect and NOT because of anything that changed in OpenVPN.

It's possible PIA was updating their own systems to also implement OpenVPN security patches and something got fumbled on their side. I imagine a lot of VPN providers were in a bit of a panic yesterday since they are huge targets for abuse/exploit attempts.

Hi Jimp

I think your right, its back up and running now, but does indeed point to PIA maybe after the pfsense setup rebooting and trying to re-connect to their servers

Thanks again!