PFsense 2.5 RC OpenVPN/ExpressVPN problem
-
have you contacted expressvpn to see if they utilize openvpn 2.5?
every provider I have not on 2.5 will not work.
also read step 7 and delete all the extra you have disabled: https://www.techhelpguides.com/2017/06/12/ultimate-pfsense-openvpn-guide/
my rules are Alias's set to go through certain gateway's and Nat'd the same. Alias set to all * Nat address the VPN tunnel
-
@bcruze
Yes! I wrote with them and they said that everything should work and they are sad that nobody can help me.xD -
With NCP disabled it should not matter what you have in the table, it will use the fallback algorithm.
What are you seeing in the logs? Is it trying to connect and failing?
Does it connect but not pass any traffic?
If that's the case then make sure you have the compression setting matched correctly. The defaults for that did change, though I thought it was before 2.5.Steve
-
@stephenw10 should I take a Screenshot of the logs?
Because there is a lot of the OpenVPN logs.
-
just spent about 45 minutes going through setting up my provider again(Azirevpn)
same issue still, doesn't matter what GCM or CBC I choose with NCM disabled. it all say its connected but no traffic passes. my logs are more or less the same. I have compression set too; decompress incoming - omit preference disable adaptive. which is exactly what worked on 2.4 and what support told me to use..their website says to use 256gcm. on a 2.4 openvpn server(I am on 2102 openvpn 2.5). but I have tried 128 CBC, GCM, and both for 256.
I don't think this is Pfsense problem to resolve this is a openvpn issue as it states here about providers; https://openvpn.net/community-downloads/
I have disabled the tunnel again, and utilizing other providers using 2.5
-
These are my settings, I deleted the things I think are security relevant xD
Yes it could be a OpenVPN Problem, because the whole thing worked on the 2.4.5 Version but I can't downgrade to it so I need to find a way.
I also thank you for the time you took!
Do you know maybe a video that deals specifically with the Rules? So that I can understand and create them completely by myself.
-
@layerthree
firewall rules on LAN tab
Nat setup:
-
@bcruze Thank you! I will copy that on my own settings and maybe something change XD
Did u tried a own server ? -
@layerthree
own server? -
@bcruze to host a own OpenVPN Server :)
-
Hi man. Did you figure it out?
I am facing the same issue. ExpressVPN is not working with the latest 2.5-RELEASE.
OpenVPN is connecting well, I set the rules according to their Wiki, but the traffic is going thru the WAN
I am about to install/downgrade to 2.4.5 version and see if it works...
-
@jairoav25 Yes! that's my Interface does look like.
I didn't find anything but I'm still trying things xD
So we could stay connected and figure this out.
-
@layerthree I also had issues with expressvpn and it is working for now. Support had me repeatedly update the same settings to no effect. Finally rebooted and logs showed no error this time but ip was not active. After 5 minutes it was active. Do not want to try to replicate at this point.
-
this is the same issue I have having with another provider who clearly isn't using open vpn 2.5
I have a support ticket open, I am hoping to see progress at some point today. -
@applesalwaysred wait I will try that. Did u all the settings in the guide or other settings?
-
@layerthree No settings were changed, just re-entered, then restart. Checked the vpn logs and noticed no disconnect errors. ~10 minutes later ip was established. This is obviously non-optimal.
-
@applesalwaysred said in PFsense 2.5 RC OpenVPN/ExpressVPN problem:
@layerthree No settings were changed, just re-entered, then restart. Checked the vpn logs and noticed no disconnect errors. ~10 minutes later ip was established. This is obviously non-optimal.
yes. every 25 or so reconnect attempts mine would work. but if i disconnected / reconnected it would stop flowing again
-
@applesalwaysred so u use exactly the ExpressVPN Guide Rules?
I need to try more things xD -
Btw, The only purpose I'm using pfSense with ExpressVPN is to unblock Geo-restricted sites (Netflix, Hulu, etc) I downgraded to 2.4.5 and everything worked as expected, except some streaming sites are not loading but if you use the native app they do. So from now, I will stop using pfSense for this purpose and will switch to OpenWRT as it is suggested in this forum
It is a shame since pfSense is a solid Firewall.
-
@jairoav25 I understand this but I will stay with PfSense and try to figure this Problem out xD
