Can't connect to PureVPN using OpenVPN w/ pfSense
-
I am doing this for the first time, but have been careful to follow instructions, copy and paste the right certs, etc. One difficulty is that the whole process is monolithic, so it is virtually impossible for a newbie like myself to know where I slipped up. You have to do everything straight thru to the end and hope that it works. If it doesn't, the logs are not very helpful (to me at least), but I pasted them below. The fact that a number of people have complained about errors in the PureVPN instructions is not particularly encouraging. If anyone can point me towards the right thing to debug that would be great. It does not look like the VPN connection is occurring…Not sure what the exact problem is.
SystemFirewallDHCPPortal AuthIPsecPPPVPNLoad BalancerOpenVPNNTPSettings Last 50 OpenVPN log entries Mar 7 23:33:10 openvpn[59166]: ifconfig_ipv6_pool_defined = DISABLED Mar 7 23:33:10 openvpn[59166]: ifconfig_ipv6_pool_base = :: Mar 7 23:33:10 openvpn[59166]: ifconfig_ipv6_pool_netbits = 0 Mar 7 23:33:10 openvpn[59166]: n_bcast_buf = 256 Mar 7 23:33:10 openvpn[59166]: tcp_queue_limit = 64 Mar 7 23:33:10 openvpn[59166]: real_hash_size = 256 Mar 7 23:33:10 openvpn[59166]: virtual_hash_size = 256 Mar 7 23:33:10 openvpn[59166]: client_connect_script = '[UNDEF]' Mar 7 23:33:10 openvpn[59166]: learn_address_script = '[UNDEF]' Mar 7 23:33:10 openvpn[59166]: client_disconnect_script = '[UNDEF]' Mar 7 23:33:10 openvpn[59166]: client_config_dir = '[UNDEF]' Mar 7 23:33:10 openvpn[59166]: ccd_exclusive = DISABLED Mar 7 23:33:10 openvpn[59166]: tmp_dir = '/tmp' Mar 7 23:33:10 openvpn[59166]: push_ifconfig_defined = DISABLED Mar 7 23:33:10 openvpn[59166]: push_ifconfig_local = 0.0.0.0 Mar 7 23:33:10 openvpn[59166]: push_ifconfig_remote_netmask = 0.0.0.0 Mar 7 23:33:10 openvpn[59166]: push_ifconfig_ipv6_defined = DISABLED Mar 7 23:33:10 openvpn[59166]: push_ifconfig_ipv6_local = ::/0 Mar 7 23:33:10 openvpn[59166]: push_ifconfig_ipv6_remote = :: Mar 7 23:33:10 openvpn[59166]: enable_c2c = DISABLED Mar 7 23:33:10 openvpn[59166]: duplicate_cn = DISABLED Mar 7 23:33:10 openvpn[59166]: cf_max = 0 Mar 7 23:33:10 openvpn[59166]: cf_per = 0 Mar 7 23:33:10 openvpn[59166]: max_clients = 1024 Mar 7 23:33:10 openvpn[59166]: max_routes_per_client = 256 Mar 7 23:33:10 openvpn[59166]: auth_user_pass_verify_script = '[UNDEF]' Mar 7 23:33:10 openvpn[59166]: auth_user_pass_verify_script_via_file = DISABLED Mar 7 23:33:10 openvpn[59166]: port_share_host = '[UNDEF]' Mar 7 23:33:10 openvpn[59166]: port_share_port = 0 Mar 7 23:33:10 openvpn[59166]: client = ENABLED Mar 7 23:33:10 openvpn[59166]: pull = ENABLED Mar 7 23:33:10 openvpn[59166]: auth_user_pass_file = '/var/etc/openvpn/client1.up' Mar 7 23:33:10 openvpn[59166]: OpenVPN 2.3.8 amd64-portbld-freebsd10.1 [SSL (OpenSSL)] [LZO] [MH] [IPv6] built on Aug 21 2015 Mar 7 23:33:10 openvpn[59166]: library versions: OpenSSL 1.0.1l-freebsd 15 Jan 2015, LZO 2.09 Mar 7 23:33:10 openvpn[59166]: WARNING: file '/var/etc/openvpn/client1.up' is group or others accessible Mar 7 23:33:10 openvpn[59501]: MANAGEMENT: unix domain socket listening on /var/etc/openvpn/client1.sock Mar 7 23:33:10 openvpn[59501]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Mar 7 23:33:10 openvpn[59501]: Control Channel Authentication: using '/var/etc/openvpn/client1.tls-auth' as a OpenVPN static key file Mar 7 23:33:10 openvpn[59501]: Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Mar 7 23:33:10 openvpn[59501]: Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Mar 7 23:33:10 openvpn[59501]: LZO compression initialized Mar 7 23:33:10 openvpn[59501]: Control Channel MTU parms [ L:1558 D:166 EF:66 EB:0 ET:0 EL:3 ] Mar 7 23:33:10 openvpn[59501]: Socket Buffers: R=[42080->65536] S=[57344->65536] Mar 7 23:33:10 openvpn[59501]: Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:143 ET:0 EL:3 AF:3/1 ] Mar 7 23:33:10 openvpn[59501]: Local Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-client' Mar 7 23:33:10 openvpn[59501]: Expected Remote Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 0,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-server' Mar 7 23:33:10 openvpn[59501]: Local Options hash (VER=V4): '9e7066d2' Mar 7 23:33:10 openvpn[59501]: Expected Remote Options hash (VER=V4): '162b04de' Mar 7 23:33:10 openvpn[59501]: UDPv4 link local (bound): [AF_INET]192.168.1.19 Mar 7 23:33:10 openvpn[59501]: UDPv4 link remote: [AF_INET]179.61.220.1:53