Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    VPN can't connect after fresh install

    Scheduled Pinned Locked Moved OpenVPN
    14 Posts 4 Posters 1.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      anwoke8204
      last edited by

      Hello, I had to reinstall my PFSense box, and ever since I did, I can't get computers to connect to the vpn. I have re-ran through the openvpn wizard and reset it up and issued new certificates and everything via the client export and no one can still connect. any one have any ideas?

      it ran perfectly till I did the re-install

      1 Reply Last reply Reply Quote 0
      • A
        anwoke8204
        last edited by

        Here is a screen shot of what happens. it tries to connect but just sits there till it times out.

        58eb6b25-37ad-4682-bc2d-7389bf8c347d-image.png

        1 Reply Last reply Reply Quote 0
        • RicoR
          Rico LAYER 8 Rebel Alliance
          last edited by

          Update your Windows client first with the latest release: https://swupdate.openvpn.org/community/releases/openvpn-install-2.4.9-I601-Win10.exe
          Uninstall 2.4.7, Reboot
          Install 2.4.9, Reboot and try again.

          -Rico

          1 Reply Last reply Reply Quote 0
          • A
            anwoke8204
            last edited by

            Hello, that didn't work. its acting like its not even getting past the firewall, even though the rules are there.

            kiokomanK 1 Reply Last reply Reply Quote 0
            • kiokomanK
              kiokoman LAYER 8 @anwoke8204
              last edited by kiokoman

              @anwoke8204
              there is nothing listening on port 1194, is the server running? is the firewall rule on place on the wan interface?
              there is nothing under Status / System Logs / OpenVPN ?

              ̿' ̿'\̵͇̿̿\з=(◕_◕)=ε/̵͇̿̿/'̿'̿ ̿
              Please do not use chat/PM to ask for help
              we must focus on silencing this @guest character. we must make up lies and alter the copyrights !
              Don't forget to Upvote with the 👍 button for any post you find to be helpful.

              1 Reply Last reply Reply Quote 0
              • johnpozJ
                johnpoz LAYER 8 Global Moderator
                last edited by johnpoz

                Well that 98.202 IP doesn't answer ping, nor does a connection with nc on udp 1194 show any return traffic.

                So with no connectivity to 1194, going to be a bit impossible for openvpn to work.

                Well that might no return anything.. If your using tls-auth - doh!! I would sniff on pfsense while your trying to connect, do you see the traffic?

                An intelligent man is sometimes forced to be drunk to spend time with his fools
                If you get confused: Listen to the Music Play
                Please don't Chat/PM me for help, unless mod related
                SG-4860 24.11 | Lab VMs 2.8, 24.11

                1 Reply Last reply Reply Quote 0
                • A
                  anwoke8204
                  last edited by

                  remind me again how I check to see if its running? sorry not completly awake yet

                  1 Reply Last reply Reply Quote 0
                  • johnpozJ
                    johnpoz LAYER 8 Global Moderator
                    last edited by

                    Is the service running?

                    openvpn.png

                    Do a packet capture on your wan for udp port 1194 to see if you get traffic.

                    An intelligent man is sometimes forced to be drunk to spend time with his fools
                    If you get confused: Listen to the Music Play
                    Please don't Chat/PM me for help, unless mod related
                    SG-4860 24.11 | Lab VMs 2.8, 24.11

                    1 Reply Last reply Reply Quote 0
                    • A
                      anwoke8204
                      last edited by

                      openvpn says its running

                      1 Reply Last reply Reply Quote 0
                      • johnpozJ
                        johnpoz LAYER 8 Global Moderator
                        last edited by

                        Well then sniff... Takes all of 10 seconds to do.. You can not connect to openvpn if pfsense never sees the traffic.

                        An intelligent man is sometimes forced to be drunk to spend time with his fools
                        If you get confused: Listen to the Music Play
                        Please don't Chat/PM me for help, unless mod related
                        SG-4860 24.11 | Lab VMs 2.8, 24.11

                        1 Reply Last reply Reply Quote 0
                        • A
                          anwoke8204
                          last edited by

                          is there a way to do a packet capture from within pfsense?

                          1 Reply Last reply Reply Quote 0
                          • johnpozJ
                            johnpoz LAYER 8 Global Moderator
                            last edited by

                            Yes under diagnostic..

                            Did you update your client config after reinstall.. Your IP could of changed? Or if using tls-auth the packets would get dropped before anything when the hmac doesn't match, etc.

                            An intelligent man is sometimes forced to be drunk to spend time with his fools
                            If you get confused: Listen to the Music Play
                            Please don't Chat/PM me for help, unless mod related
                            SG-4860 24.11 | Lab VMs 2.8, 24.11

                            1 Reply Last reply Reply Quote 0
                            • A
                              anwoke8204
                              last edited by

                              IP is the same for now, and packet capture came back empty

                              1 Reply Last reply Reply Quote 0
                              • johnpozJ
                                johnpoz LAYER 8 Global Moderator
                                last edited by

                                @anwoke8204 said in VPN can't connect after fresh install:

                                packet capture came back empty

                                Well then how you would you connect!

                                If pfsense does not see the traffic!! Mean you have something in front of pfsense that blocking 1194 UDP if you did not see any traffic on pfsense wan.

                                An intelligent man is sometimes forced to be drunk to spend time with his fools
                                If you get confused: Listen to the Music Play
                                Please don't Chat/PM me for help, unless mod related
                                SG-4860 24.11 | Lab VMs 2.8, 24.11

                                1 Reply Last reply Reply Quote 0
                                • First post
                                  Last post
                                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.