OpenVPN starts on both nodes

mvrk

Hi,

I've got two pfsense nodes (active/standby).

I've configured pfsense as openvpn client to connecto to an openvpn server, and i don't know if this is a bug or not, but openvpn starts on both my nodes, which causes the connection to reset every time because the server is getting two connection from the same certificate cn.

Shouldn't the openvpn service only start on the standby node when there is a failover?

cmb

You have to bind it to a CARP IP.

mvrk

Thankx, works great!

Just another question, it works ok for a client, but if i setup a server and bind it to CARP VIP it still starts the openvpn server on both nodes, is this normal?

cmb

Yes, it's best to leave the servers running always.

mvrk

@cmb:

Yes, it's best to leave the servers running always.

That brings me a problem, when i'm connected throuh openvpn i can't access pfsense2, i guess it's because pfsense2 also has an openvpn interface with the same IP address, correct?

Any away to workaround this behaviour?