Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Need some help!

    Scheduled Pinned Locked Moved OpenVPN
    6 Posts 3 Posters 4.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      nateman66c
      last edited by

      Hi guys, i'm at a loss…  I can connect to the office pfsense from my house, but can't traverse the LAN?  It's giving me the following warning...

      Thu Feb 09 18:38:26 2012 OpenVPN 2.2.0 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] [IPv6 payload 20110521-1 (2.2.0)] built on May 21 2011
      Enter Management Password:
      Thu Feb 09 18:38:39 2012 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
      Thu Feb 09 18:38:39 2012 WARNING: Make sure you understand the semantics of –tls-remote before using it (see the man page).
      Thu Feb 09 18:38:39 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
      Thu Feb 09 18:38:39 2012 Control Channel Authentication: using '-udp-1194-tls.key' as a OpenVPN static key file
      Thu Feb 09 18:38:39 2012 LZO compression initialized
      Thu Feb 09 18:38:39 2012 UDPv4 link local (bound): [undef]:1194
      Thu Feb 09 18:38:39 2012 UDPv4 link remote: 00.000.00.000:1194
      Thu Feb 09 18:38:39 2012 WARNING: this configuration may cache passwords in memory – use the auth-nocache option to prevent this
      Thu Feb 09 18:38:41 2012 [RoadWarrior_Server_Cert] Peer Connection Initiated with 00.000.00.000:1194
      Thu Feb 09 18:38:43 2012 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
      Thu Feb 09 18:38:43 2012 open_tun, tt->ipv6=0
      Thu Feb 09 18:38:43 2012 TAP-WIN32 device [Local Area Connection 2] opened: \.\Global{C2C92474-F380-4412-B032-142A2C460AD2}.tap
      Thu Feb 09 18:38:43 2012 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.3.0.6/255.255.255.252 on interface {C2C92474-F380-4412-B032-142A2C460AD2} [DHCP-serv: 10.3.0.5, lease-time: 31536000]
      Thu Feb 09 18:38:43 2012 Successful ARP Flush on interface [16] {C2C92474-F380-4412-B032-142A2C460AD2}
      Thu Feb 09 18:38:48 2012 Warning: address 192.168.3.1 is not a network address in relation to netmask 255.255.255.0
      Thu Feb 09 18:38:48 2012 ROUTE: route addition failed using CreateIpForwardEntry: The parameter is incorrect.  [status=87 if_index=16]
      Thu Feb 09 18:38:48 2012 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
      The route addition failed: The parameter is incorrect.

      Thu Feb 09 18:38:48 2012 Initialization Sequence Completed

      1 Reply Last reply Reply Quote 0
      • G
        ghowey
        last edited by

        "Thu Feb 09 18:38:48 2012 Warning: address 192.168.3.1 is not a network address in relation to netmask 255.255.255.0"

        Try 192.168.3.0 255.255.255.0

        1 Reply Last reply Reply Quote 0
        • N
          nateman66c
          last edited by

          That was easy!  Thanks guys!

          1 Reply Last reply Reply Quote 0
          • N
            nateman66c
            last edited by

            High guys!  I have another question…

            I used this method  to setup the VPN user account.

            Youtube Video

            How do I add more accounts for other users?  Do I repeat the process for everyone, or is there an easier way?

            Thanks for your time!

            1 Reply Last reply Reply Quote 0
            • N
              nateman66c
              last edited by

              Bumping this after trying to add another vpn client and the client export function wasn't there for the newly created client…  How do add more road warrior clients?

              Thanks for your time as always!

              1 Reply Last reply Reply Quote 0
              • C
                cmb
                last edited by

                Either you didn't create a certificate for that client, or the certificate you created is on the wrong CA.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.