Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenVPN TCP - No traffic

    Scheduled Pinned Locked Moved OpenVPN
    openvpn problemgremlins
    15 Posts 3 Posters 2.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      Crlaozwyn
      last edited by

      Argh! It started working again without me making a single change from yesterday.

      Is the routing table part of the logs? If so, I think the only relevant entry would be this:
      2019-37-22 15:37:02 NIP: adding (included) IPv4 route 192.168.13.0/24

      1 Reply Last reply Reply Quote 0
      • V
        viragomann
        last edited by

        No, the routing table is a list containing all route of an operating system. It depends on the OS how to show it.

        In Windows and some Linux "netstat -r" may work.
        In other Linux "route" or "ip route".
        In MacOS "netstat -nr".

        1 Reply Last reply Reply Quote 0
        • johnpozJ
          johnpoz LAYER 8 Global Moderator
          last edited by

          route print will also work on windows.

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 24.11 | Lab VMs 2.8, 24.11

          1 Reply Last reply Reply Quote 0
          • C
            Crlaozwyn
            last edited by

            Gotcha, thank you both for the clarification. Unfortunately the client is an iPhone and, based on a bit of Googling, there isn't really a way to access the IP routing table. With some help, I did discover a setup issue on my part though:

            Both UDP and TCP OpenVPN servers were using the same subnet. I've changed the subnet for UDP to be unique and non-overlapping. It hasn't fixed it yet, but that should hopefully prevent TCP from breaking at least...

            1 Reply Last reply Reply Quote 0
            • johnpozJ
              johnpoz LAYER 8 Global Moderator
              last edited by johnpoz

              Dude is that you on reddit ;) heheeh - that is me over on reddit

              You should be able to see your route table via Hurricane electric app.

              Let me double check that.

              Yup the HE tools shows that
              iosroutes.jpg

              You can get it here
              https://networktools.he.net/

              An intelligent man is sometimes forced to be drunk to spend time with his fools
              If you get confused: Listen to the Music Play
              Please don't Chat/PM me for help, unless mod related
              SG-4860 24.11 | Lab VMs 2.8, 24.11

              1 Reply Last reply Reply Quote 0
              • C
                Crlaozwyn
                last edited by

                Bahahah, yeah that's me. I didn't get a response here after a few days so I figured I'd put another line in the water. Thanks again for your help.

                HE.NET app definitely has a lot of data. Do you need all interfaces? There's around a hundred rows

                1 Reply Last reply Reply Quote 0
                • johnpozJ
                  johnpoz LAYER 8 Global Moderator
                  last edited by

                  You just need to find your vpn interface, once you connect.

                  You can use it to do a traceroute as well.. Can you ping your lan side interface of pfsense?

                  Here pinging my lan IP of pfsense using tcp from ios
                  44084.jpg

                  An intelligent man is sometimes forced to be drunk to spend time with his fools
                  If you get confused: Listen to the Music Play
                  Please don't Chat/PM me for help, unless mod related
                  SG-4860 24.11 | Lab VMs 2.8, 24.11

                  1 Reply Last reply Reply Quote 0
                  • C
                    Crlaozwyn
                    last edited by Crlaozwyn

                    Total fail screenshot attempt - deleted

                    1 Reply Last reply Reply Quote 0
                    • johnpozJ
                      johnpoz LAYER 8 Global Moderator
                      last edited by johnpoz

                      Well that doesn't look like you have any routes. But I specific route vs default route.. Let me change mine and reconnect

                      Even when I set to default, I still see routes for the tunnel network..

                      Are you even connected?

                      An intelligent man is sometimes forced to be drunk to spend time with his fools
                      If you get confused: Listen to the Music Play
                      Please don't Chat/PM me for help, unless mod related
                      SG-4860 24.11 | Lab VMs 2.8, 24.11

                      1 Reply Last reply Reply Quote 0
                      • C
                        Crlaozwyn
                        last edited by

                        So uh... I totally disabled the VPN in order to be able to actually upload anything. Screenshot fail! Should be a little more enlightening here...
                        IMG_2374.jpg

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.