OPEN VPN SITE to SITE
-
Hi Guys,
i have created a OPENVPN site to SITE between two office using 2.4.1 version.
however the tunnel is coming up and don't know why !!!
i have created and deleted the tunnel like 100 time but can't seem to get it online.
Can someone please advise why , the below are the log of the client side.Nov 5 15:56:18 openvpn[61217]: UDP link remote: [AF_INET]65.66.7.7:10448 Nov 5 15:56:18 openvpn[61217]: UDP link local (bound): [AF_INET]55.78.655.66:10448 Nov 5 15:56:18 openvpn[61217]: TCP/UDP: Preserving recently used remote address: [AF_INET]65.66.7.7:10448 Nov 5 15:56:18 openvpn[61217]: /usr/local/sbin/ovpn-linkup ovpnc2 1500 1605 10.8.0.2 10.8.0.1 init Nov 5 15:56:18 openvpn[61217]: /sbin/ifconfig ovpnc2 10.8.0.2 10.8.0.1 mtu 1500 netmask 255.255.255.255 up Nov 5 15:56:18 openvpn[61217]: do_ifconfig, tt->did_ifconfig_ipv6_setup=0 Nov 5 15:56:18 openvpn[61217]: TUN/TAP device /dev/tun2 opened Nov 5 15:56:18 openvpn[61217]: TUN/TAP device ovpnc2 exists previously, keep at program end Nov 5 15:56:18 openvpn[61217]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Nov 5 15:56:18 openvpn[60678]: library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.10 Nov 5 15:56:18 openvpn[60678]: OpenVPN 2.4.4 amd64-portbld-freebsd11.0 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Oct 3 2017 Nov 5 15:56:18 openvpn[60678]: disabling NCP mode (--ncp-disable) because not in P2MP client or server mode Nov 5 15:56:18 openvpn[30127]: SIGTERM[hard,] received, process exiting Nov 5 15:56:17 openvpn[30127]: /usr/local/sbin/ovpn-linkdown ovpnc2 1500 1605 10.8.0.2 10.8.0.1 init Nov 5 15:56:17 openvpn[30127]: event_wait : Interrupted system call (code=4)
-
Let's first identify the issue. You stated:
i have created a OPENVPN site to SITE between two office using 2.4.1 version.
however the tunnel is coming up and don't know why !!!So, is the tunnel up, but not passing traffic or are you having trouble getting the tunnel up?
Post the server1.conf and config1.conf from the server and client respectively.
Is PFsense the edge firewall/router at both sites? If not, post a network map.
-
Thank you for your answer,
we have found the error was on the IP dresses of the WAN
thank you