• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

ExpressVPN (OpenVPN) not working on pfSense 2.5.0a devel

OpenVPN
4
11
2.3k
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • C
    coleni25
    last edited by Jan 29, 2020, 11:05 AM

    Hello everybody,
    I'm new on this forum.
    I've been using ExpressVPN for years on my pfSense router QOTOM-Q355G4 (pfSense V. 2.4.3 / 2.4.4 / 2.4.5) and now on 2.5.0a devel version after upgrading.
    Just a few days before updating from 2.4.5, ExpressVPN stopped working : the link is UP (in OpenVPN status client instances) but when connecting to internet from any equipment (pc via cable or WiFi or mobile via Wifi), the ExpressVPN HTTP URL used for IP testing (https://www.expressvpn.com/fr/what-is-my-ip) always shows the ISP server address : ExpressVPN is never routing packets anymore.
    Has someone the same issue since a few days ?
    Thanks for your answers.

    C 1 Reply Last reply Feb 19, 2020, 9:45 AM Reply Quote 0
    • C
      coleni25 @coleni25
      last edited by Feb 19, 2020, 9:45 AM

      Nobody working with ExpressVPN on pfSense router ?

      1 Reply Last reply Reply Quote 0
      • F
        farmishly
        last edited by Jul 31, 2020, 7:52 PM

        Any joy? facing the same issue here and am very confused. Everything done by the book, everything looks right and the link is up - gateway status is "pending" but I'm not sure if that's an issue - and there's traffic going through the firewall rule. BUT when I check my IP, like you, it is my public facing IP.

        Maybe an update changed something?

        C 2 Replies Last reply Aug 1, 2020, 7:27 AM Reply Quote 0
        • C
          coleni25 @farmishly
          last edited by Aug 1, 2020, 7:27 AM

          @farmishly
          Hi farmishly, I'm currently not @ home and not accessing my router.
          But what I remember is that you have to configure your virtual gateway and reject direct incoming traffic from WAN (if you have first configured your virtual route thru ExpressVPN gateway using only IP port 443).
          The configuration document on the web is quite clear and, if you don't forget anything, it is perfectly working.
          Please follow the help doc step by step for checking.
          Regards.

          C 1 Reply Last reply Mar 5, 2021, 8:38 PM Reply Quote 0
          • C
            coleni25 @farmishly
            last edited by Aug 1, 2020, 7:52 AM

            @farmishly
            Important : don't forget NO_WAN_EGRESS rule

            i.e. https://www.infotechwerx.com/blog/Prevent-Any-Traffic-VPN-Hosts-Egressing-WAN

            1 Reply Last reply Reply Quote 0
            • C
              clhols @coleni25
              last edited by Mar 5, 2021, 8:38 PM

              @coleni25 Hi, I just updated to 2.5.0 and started seeing the ISP IP address like you.
              Adding the NO_WAN_EGRESS rule stop traffic altogether.

              I am not sure what you mean by "configure your virtual gateway and reject direct incoming traffic from WAN" or "configuration document on the web is quite clear".

              Is it a pfsense configuration document or ExpressVPN configuration document?

              C 1 Reply Last reply Mar 5, 2021, 8:44 PM Reply Quote 0
              • C
                coleni25 @clhols
                last edited by Mar 5, 2021, 8:44 PM

                @clhols

                https://www.infotechwerx.com/blog/Prevent-Any-Traffic-VPN-Hosts-Egressing-WAN

                C 1 Reply Last reply Mar 5, 2021, 8:52 PM Reply Quote 0
                • C
                  clhols @coleni25
                  last edited by Mar 5, 2021, 8:52 PM

                  @coleni25 Adding that rule results in:

                  This site can’t be reached
google.com refused to connect.

                  When trying to browse google.com.

                  C 1 Reply Last reply Mar 5, 2021, 9:19 PM Reply Quote 0
                  • C
                    clhols @clhols
                    last edited by clhols Mar 5, 2021, 9:27 PM Mar 5, 2021, 9:19 PM

                    @coleni25 Found a solution.
                    Under "System / Routing / Gateways" I edited the VPN gateway and checked "Disable Gateway Monitoring". So for some reason pfsense must think the gateway is down and sends traffic through WAN. I guess the Express VPN host doesn't respond to the pings.

                    An alternative is to set "Monitor IP" to some DNS servers IP like 1.1.1.2.

                    C C 2 Replies Last reply Mar 6, 2021, 6:52 AM Reply Quote 0
                    • C
                      coleni25 @clhols
                      last edited by Mar 6, 2021, 6:52 AM

                      @clhols
                      I'm not using ExpressVPN anymore on pfSense since my web provider doesn't accept secured smtp traffic over VPN (emails seem to be sent but are never received by the recipient).
                      So I'm using ExpressVPN on each device (p.c. or smartphone) with a special configuration for Outlook app.
                      Regards

                      1 Reply Last reply Reply Quote 0
                      • C
                        Crackerjackshot @clhols
                        last edited by May 27, 2021, 3:51 PM

                        @clhols This only killed my internet connection.

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.