Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenVPN not working

    Scheduled Pinned Locked Moved OpenVPN
    47 Posts 3 Posters 8.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • manjotscM
      manjotsc @KOM
      last edited by

      @KOM
      Oct 16 10:47:49 openvpn 86796 Exiting due to fatal error
      Oct 16 10:47:49 openvpn 86796 neither stdin nor stderr are a tty device and you have neither a controlling tty nor systemd - can't ask for 'Enter Auth Username:'. If you used --daemon, you need to use --askpass to make passphrase-protected keys work, and you can not use --auth-nocache.
      Oct 16 10:47:49 openvpn 86796 library versions: OpenSSL 1.0.2o-freebsd 27 Mar 2018, LZO 2.10
      Oct 16 10:47:49 openvpn 86796 OpenVPN 2.4.6 amd64-portbld-freebsd11.2 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Oct 3 2018
      Oct 16 10:47:49 openvpn 86796 auth_user_pass_file = 'stdin'
      Oct 16 10:47:49 openvpn 86796 pull = ENABLED
      Oct 16 10:47:49 openvpn 86796 client = ENABLED
      Oct 16 10:47:49 openvpn 86796 port_share_port = '[UNDEF]'
      Oct 16 10:47:49 openvpn 86796 port_share_host = '[UNDEF]'
      Oct 16 10:47:49 openvpn 86796 auth_token_lifetime = 0
      Oct 16 10:47:49 openvpn 86796 auth_token_generate = DISABLED
      Oct 16 10:47:49 openvpn 86796 auth_user_pass_verify_script_via_file = DISABLED
      Oct 16 10:47:49 openvpn 86796 auth_user_pass_verify_script = '[UNDEF]'
      Oct 16 10:47:49 openvpn 86796 max_routes_per_client = 256
      Oct 16 10:47:49 openvpn 86796 max_clients = 1024
      Oct 16 10:47:49 openvpn 86796 cf_per = 0
      Oct 16 10:47:49 openvpn 86796 cf_max = 0
      Oct 16 10:47:49 openvpn 86796 duplicate_cn = DISABLED
      Oct 16 10:47:49 openvpn 86796 enable_c2c = DISABLED
      Oct 16 10:47:49 openvpn 86796 push_ifconfig_ipv6_remote = ::
      Oct 16 10:47:49 openvpn 86796 push_ifconfig_ipv6_local = ::/0
      Oct 16 10:47:49 openvpn 86796 push_ifconfig_ipv6_defined = DISABLED
      Oct 16 10:47:49 openvpn 86796 push_ifconfig_remote_netmask = 0.0.0.0
      Oct 16 10:47:49 openvpn 86796 push_ifconfig_local = 0.0.0.0
      Oct 16 10:47:49 openvpn 86796 push_ifconfig_defined = DISABLED
      Oct 16 10:47:49 openvpn 86796 tmp_dir = '/tmp'
      Oct 16 10:47:49 openvpn 86796 ccd_exclusive = DISABLED
      Oct 16 10:47:49 openvpn 86796 client_config_dir = '[UNDEF]'

      Vendor: HP
      Version: P01 Ver. 02.50
      Release Date: Wed Jul 17 2024
      Boot Method: UEFI
      24.11-RELEASE (amd64)
      FreeBSD 15.0-CURRENT
      CPU Type: Intel(R) Core(TM) i5-7500 CPU @ 3.40GHz
      Current: 3606 MHz, Max: 3400 MHz
      4 CPUs : 1 package(s) x 4 core(s)

      1 Reply Last reply Reply Quote 0
      • KOMK
        KOM
        last edited by

        That doesn't answer my question. Were there any events that happened BEFORE the fatal error message? I can't tell if that log shows old events first or new events since they're all at the same timestamp.

        1 Reply Last reply Reply Quote 0
        • manjotscM
          manjotsc
          last edited by

          Ok let me check the order

          Vendor: HP
          Version: P01 Ver. 02.50
          Release Date: Wed Jul 17 2024
          Boot Method: UEFI
          24.11-RELEASE (amd64)
          FreeBSD 15.0-CURRENT
          CPU Type: Intel(R) Core(TM) i5-7500 CPU @ 3.40GHz
          Current: 3606 MHz, Max: 3400 MHz
          4 CPUs : 1 package(s) x 4 core(s)

          1 Reply Last reply Reply Quote 0
          • manjotscM
            manjotsc
            last edited by

            It's newest entry on top, followed by old ones

            Screenshot_20191016-124249_Chrome.jpg

            Vendor: HP
            Version: P01 Ver. 02.50
            Release Date: Wed Jul 17 2024
            Boot Method: UEFI
            24.11-RELEASE (amd64)
            FreeBSD 15.0-CURRENT
            CPU Type: Intel(R) Core(TM) i5-7500 CPU @ 3.40GHz
            Current: 3606 MHz, Max: 3400 MHz
            4 CPUs : 1 package(s) x 4 core(s)

            1 Reply Last reply Reply Quote 0
            • KOMK
              KOM
              last edited by KOM

              OK, so @Rico was bang on the money.

              Some Google-Fu shows that this error can happen if you give it a password-protected private key to use. The suggested fix is to run your key through openssl like this:

              openssl rsa -in YourPrivateKey.pem -out NewPrivateKey.pem
              
              manjotscM 1 Reply Last reply Reply Quote 0
              • manjotscM
                manjotsc @KOM
                last edited by

                @KOM how do I do that?

                Vendor: HP
                Version: P01 Ver. 02.50
                Release Date: Wed Jul 17 2024
                Boot Method: UEFI
                24.11-RELEASE (amd64)
                FreeBSD 15.0-CURRENT
                CPU Type: Intel(R) Core(TM) i5-7500 CPU @ 3.40GHz
                Current: 3606 MHz, Max: 3400 MHz
                4 CPUs : 1 package(s) x 4 core(s)

                1 Reply Last reply Reply Quote 0
                • KOMK
                  KOM
                  last edited by

                  Never mind. That advice only applies if you were making a private key with password-protection. It doesn't apply for a client-connection to a public VPN where you don't use a client cert.

                  This is really weird. The error message is complaining as if either you need a user/pass and didn't supply one, or it doesn't want a user/pass and you did supply one.

                  What version of pfSense is this?

                  manjotscM 1 Reply Last reply Reply Quote 0
                  • manjotscM
                    manjotsc @KOM
                    last edited by

                    @KOM 2.4.4-RELEASE-p3 (amd64)
                    built on Wed May 15 18:53:44 EDT 2019
                    FreeBSD 11.2-RELEASE-p10

                    Vendor: HP
                    Version: P01 Ver. 02.50
                    Release Date: Wed Jul 17 2024
                    Boot Method: UEFI
                    24.11-RELEASE (amd64)
                    FreeBSD 15.0-CURRENT
                    CPU Type: Intel(R) Core(TM) i5-7500 CPU @ 3.40GHz
                    Current: 3606 MHz, Max: 3400 MHz
                    4 CPUs : 1 package(s) x 4 core(s)

                    1 Reply Last reply Reply Quote 0
                    • KOMK
                      KOM
                      last edited by

                      Strange. And what happens when you delete all that and try with your other provider, PureVPN? Exact same symptoms and error?

                      manjotscM 1 Reply Last reply Reply Quote 0
                      • manjotscM
                        manjotsc @KOM
                        last edited by

                        @KOM ya same thing

                        Vendor: HP
                        Version: P01 Ver. 02.50
                        Release Date: Wed Jul 17 2024
                        Boot Method: UEFI
                        24.11-RELEASE (amd64)
                        FreeBSD 15.0-CURRENT
                        CPU Type: Intel(R) Core(TM) i5-7500 CPU @ 3.40GHz
                        Current: 3606 MHz, Max: 3400 MHz
                        4 CPUs : 1 package(s) x 4 core(s)

                        1 Reply Last reply Reply Quote 0
                        • KOMK
                          KOM
                          last edited by

                          It's suspicious that it fails the same way with a different config and provider.

                          I don't have any other suggestions, sorry.

                          1 Reply Last reply Reply Quote 0
                          • manjotscM
                            manjotsc
                            last edited by manjotsc

                            I found the problem and it's working now, my pfblocker has the same subnet ip as the purevpn was trying to obtain. Only issue now is when I am connect to openvpn, the dns stops working ex: youtube.com when typed, but if I type the ip of youtube "172.217.13.206" manually on address bar it works.

                            Vendor: HP
                            Version: P01 Ver. 02.50
                            Release Date: Wed Jul 17 2024
                            Boot Method: UEFI
                            24.11-RELEASE (amd64)
                            FreeBSD 15.0-CURRENT
                            CPU Type: Intel(R) Core(TM) i5-7500 CPU @ 3.40GHz
                            Current: 3606 MHz, Max: 3400 MHz
                            4 CPUs : 1 package(s) x 4 core(s)

                            1 Reply Last reply Reply Quote 1
                            • KOMK
                              KOM
                              last edited by

                              Funny you should mention that. I just got an SG-1100 and was configuring it last night. I have 3 VPN connections defined, and when I bring one up in particular, everything dies. I also have pfB loaded. I was about to spend time today researching the problem but you may have just solved it for me.

                              manjotscM 1 Reply Last reply Reply Quote 0
                              • manjotscM
                                manjotsc @KOM
                                last edited by

                                @KOM so did it solve the problem?

                                Vendor: HP
                                Version: P01 Ver. 02.50
                                Release Date: Wed Jul 17 2024
                                Boot Method: UEFI
                                24.11-RELEASE (amd64)
                                FreeBSD 15.0-CURRENT
                                CPU Type: Intel(R) Core(TM) i5-7500 CPU @ 3.40GHz
                                Current: 3606 MHz, Max: 3400 MHz
                                4 CPUs : 1 package(s) x 4 core(s)

                                1 Reply Last reply Reply Quote 0
                                • KOMK
                                  KOM
                                  last edited by

                                  No, it turned out to be a DNS issue.

                                  manjotscM 1 Reply Last reply Reply Quote 0
                                  • manjotscM
                                    manjotsc @KOM
                                    last edited by

                                    @KOM I am having same issue, DNS stops working, when connected to OpenVPN

                                    Vendor: HP
                                    Version: P01 Ver. 02.50
                                    Release Date: Wed Jul 17 2024
                                    Boot Method: UEFI
                                    24.11-RELEASE (amd64)
                                    FreeBSD 15.0-CURRENT
                                    CPU Type: Intel(R) Core(TM) i5-7500 CPU @ 3.40GHz
                                    Current: 3606 MHz, Max: 3400 MHz
                                    4 CPUs : 1 package(s) x 4 core(s)

                                    1 Reply Last reply Reply Quote 0
                                    • KOMK
                                      KOM
                                      last edited by

                                      I think I had to specify a gateway under General Settings - DNS Servers.

                                      manjotscM 1 Reply Last reply Reply Quote 0
                                      • manjotscM
                                        manjotsc @KOM
                                        last edited by

                                        @KOM I tired that, same thing dns stops working.

                                        Vendor: HP
                                        Version: P01 Ver. 02.50
                                        Release Date: Wed Jul 17 2024
                                        Boot Method: UEFI
                                        24.11-RELEASE (amd64)
                                        FreeBSD 15.0-CURRENT
                                        CPU Type: Intel(R) Core(TM) i5-7500 CPU @ 3.40GHz
                                        Current: 3606 MHz, Max: 3400 MHz
                                        4 CPUs : 1 package(s) x 4 core(s)

                                        1 Reply Last reply Reply Quote 0
                                        • KOMK
                                          KOM
                                          last edited by

                                          DNS fails for all of pfSense (not just LAN clients) when you bring a tunnel up? You can't resolve via Diagnostics - DNS Lookup?

                                          manjotscM 1 Reply Last reply Reply Quote 0
                                          • manjotscM
                                            manjotsc @KOM
                                            last edited by

                                            @KOM Is it a bug?

                                            Vendor: HP
                                            Version: P01 Ver. 02.50
                                            Release Date: Wed Jul 17 2024
                                            Boot Method: UEFI
                                            24.11-RELEASE (amd64)
                                            FreeBSD 15.0-CURRENT
                                            CPU Type: Intel(R) Core(TM) i5-7500 CPU @ 3.40GHz
                                            Current: 3606 MHz, Max: 3400 MHz
                                            4 CPUs : 1 package(s) x 4 core(s)

                                            1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post
                                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.