Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Error after update to 2.5.1

    Scheduled Pinned Locked Moved OpenVPN
    9 Posts 3 Posters 920 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      igsbox
      last edited by

      After update to 2.5.1 in log:
      Apr 26 09:40:20 openvpn 62955 [remote-vpn-srv1] Inactivity timeout (--ping-restart), restarting
      Apr 26 09:40:19 openvpn 62955 write TCPv4_CLIENT: Permission denied (code=13)
      ...
      Apr 26 09:40:13 openvpn 62955 write TCPv4_CLIENT: Permission denied (code=13)
      Apr 26 09:37:30 openvpn 62955 Initialization Sequence Completed
      Apr 26 09:37:30 openvpn 62955 Preserving previous TUN/TAP instance: ovpnc16

      This error persist for any tcp openvpn connection only with another pfSense router. Versions of remote pfSense - 2.5 and 2.4.5. TCP connection with OpenWRT openwpn work fine.
      If I change proto from TCP v4 to UDP v4 - all work, but I need exactly tcp protocol.
      Before upgrading to 2.5.1 everything worked.

      GertjanG 1 Reply Last reply Reply Quote 0
      • GertjanG
        Gertjan @igsbox
        last edited by

        @igsbox

        Compare your issue with an "OpenVPN https://forum.netgate.com/topic/131336/openvpn-client-misbehaving" in the past :
        https://forum.netgate.com/topic/131336/openvpn-client-misbehaving

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        1 Reply Last reply Reply Quote 0
        • P
          peterzy
          last edited by

          I have exactly same issues. All went to hell after upgrade from 2.5.0 to 2.5.1. Any ideas ? I see similar messages even in nginx logs for web configurator. So should be some SSL issue..

          1 Reply Last reply Reply Quote 0
          • P
            peterzy
            last edited by peterzy

            If I disable SSL from webconfigurator, it works flowlessly. However it is not an option for OpenVPN. SO it has something to do with OpenSSL. It happens(for both OpenVPN and Webconfigurator) only on one of the WANs. Any hints ?

            GertjanG 1 Reply Last reply Reply Quote 0
            • GertjanG
              Gertjan @peterzy
              last edited by

              @peterzy said in Error after update to 2.5.1:

              only on one of the WANs

              Because the suject from @igsbox has an hidden subject : Multiple WANs ?

              No "help me" PM's please. Use the forum, the community will thank you.
              Edit : and where are the logs ??

              I 1 Reply Last reply Reply Quote 0
              • I
                igsbox @Gertjan
                last edited by

                @gertjan
                Yes, I have multiple wans in my setup.

                I read old post and it's similar, but in my case I have and server and client on my and remote sides. And both cause error on both sides with tcp-proto connection.

                GertjanG 1 Reply Last reply Reply Quote 0
                • GertjanG
                  Gertjan @igsbox
                  last edited by

                  @igsbox You've seen the other forum messages that mention issues with pfSense CE when are is more then one WAN ?

                  No "help me" PM's please. Use the forum, the community will thank you.
                  Edit : and where are the logs ??

                  1 Reply Last reply Reply Quote 0
                  • P
                    peterzy
                    last edited by peterzy

                    Guys, can you point me also the correct answers. I confirm second router with the same problem(different hardware, multiwan again). The only workaround I have found so far(in case someone needs it)
                    System >> Advanced >> Firewall & NAT

                    Bypass firewall rules for traffic on the same interface

                    This is workaround but definitely a bug in 2.5.1

                    GertjanG 1 Reply Last reply Reply Quote 0
                    • GertjanG
                      Gertjan @peterzy
                      last edited by

                      @peterzy It seems that the pre release "2.6.0"corrects the Mult iWAN bug.
                      See the forum post related to that issue.

                      No "help me" PM's please. Use the forum, the community will thank you.
                      Edit : and where are the logs ??

                      1 Reply Last reply Reply Quote 0
                      • First post
                        Last post
                      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.