Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login
    1. Home
    2. Tags
    3. openvpn client
    Log in to post
    • All categories
    • T

      OpenVPN bridged to LAN stops working

      OpenVPN
      • openvpn client tap bridge • • TrickyD666
      7
      1
      Votes
      7
      Posts
      209
      Views

      M

      @TrickyD666

      Thanks for confirming OPNSense worked. I've been putting off migrating from PF for ages. Sad day. Anyway, for anyone interested I also gave the 8.x dev build from 1 August a try and the same bug persists. I wonder if this is also a problem in the "plus" version.

    • K

      Communicate between OpenVPN hosts

      OpenVPN
      • openvpn client openvpn config ovpn • • Kamil 0
      1
      0
      Votes
      1
      Posts
      520
      Views

      No one has replied

    • A

      Change DNS server for a set of IPs in ALIAS (DNS Forwarder)

      DHCP and DNS
      • dns forwarder openvpn client • • adamitj
      4
      0
      Votes
      4
      Posts
      304
      Views

      V

      @adamitj
      DoT requests which are redirected to another server won't work anyway, because the SSL verification will fail.

      Therefore I simply block all DoT and DoH in my network. Hence the clients have to do unencrypted DNS requests, which I can redirect as needed.

    • M

      5100/22.05 - Degraded OpenVPN client performance

      OpenVPN
      • openvpn client sg-5100 • • Myster_fr
      6
      0
      Votes
      6
      Posts
      254
      Views

      M

      @gertjan yes, it was pfblockerng-devel v3.1.0_6.

      I have blocklists set to prevent traffic coming from "non friendly countries", basically, asia region, russia, some northern countries + africa.

      But I agree, it is quite weird.
      I've now made several tests with pfblocker-ng enabled/disabled, etc.. and always see the BW drop when pfblocker-ng is enabled.

      5c64470f-6054-465d-8153-9428ad13ba7a-image.png

    • T

      Execute script when Openvpn client connect ?

      OpenVPN
      • openvpn client openvpn config • • tbaror
      1
      0
      Votes
      1
      Posts
      183
      Views

      No one has replied

    • T

      OpenVpn with NPS , ensure client health check

      OpenVPN
      • openvpn client radius openvpn • • tbaror
      1
      0
      Votes
      1
      Posts
      217
      Views

      No one has replied

    • M

      OpenVPN Connect iOs client randomly disconnecting multiple times

      OpenVPN
      • ios open vpn radius openvpn client • • markedo
      2
      0
      Votes
      2
      Posts
      323
      Views

      K

      @markedo hi , did you have luck resolving this ?

    • M

      Routing to Openvpn Client

      OpenVPN
      • openvpn client routing • • m229m
      2
      0
      Votes
      2
      Posts
      359
      Views

      V

      @m229m
      Either set up the OpenVPN server on the router (default gateway) or set up a transit network on the router and move the VPN server into it.

      Your setup ends up in asymmetric routing issues.

    • M

      PfSense OpenVPN Client to OpenVPN Access Server

      OpenVPN
      • openvpn client • • Morrismx
      1
      0
      Votes
      1
      Posts
      257
      Views

      No one has replied

    • C

      OpenVPN Android connect faalt

      Nederlands
      • openvpn client openvpn problem • • chaos net
      1
      0
      Votes
      1
      Posts
      720
      Views

      No one has replied

    • mgiM

      OpenVPN client drops after assigning interface

      OpenVPN
      • openvpn client openvpn openvpn problem tls tls error • • mgi
      10
      0
      Votes
      10
      Posts
      1340
      Views

      mgiM

      @johnsheridan Thanks for the info and testing. That makes sense. I’ll have a look at those files and patch.

      This will be probably fixed in one of the next releases then.

    • M

      Remote OVPN Client access devices in Remote LAN over OpenVPN Site2Site link?

      OpenVPN
      • openvpn openvpn client site-to-site routing • • mpcjames
      4
      0
      Votes
      4
      Posts
      503
      Views

      johnpozJ

      @mpcjames glad I could help.

    • B

      WAN interface performance issue, likely bug

      General pfSense Questions
      • performance bug openvpn client high-impact • • bigtfromaz
      3
      0
      Votes
      3
      Posts
      212
      Views

      B

      @stephenw10
      Answer, hopefully in order...

      Version is 2.5.2 on the Azure VM and 21.05-RELEASE (amd64) on the 5100s

      OVPN is site-to-site, pre-shared key, UDP on IPV4 only, Layer 3. On the remote server there is a point-to-site server (for use as a remote internet gateway). It's for travel use but nobody's travelling so there are no connections.

      Latency is 27-32 ms, WAN Azure to WAN local; 100-130 ms to the other sites from WAN local.

      I only have one local device so I haven't tried to replicate here. I could spin up a Hyper-V guest but not now, I am currently working on alternative method, most likely a Linux server on the local LAN, running OpenVPN as a server and NAT port forward Linux server. We are up interactively but backups through the tunnels are an issue.

      Not an expert regarding state tables so I wouldn't know what to look for. I can try clearing the state tables after the trouble begins to see if that reset avoids a reboot to restore WAN performance. Would that provide useful information?

      We're not running IPSEC now. We were, but IPSEC failed after a recent upgrade. We switched to OpenVPN. I have read that the IPSEC issue has been resolved but haven't switched back.

      One more observation. We do have a point-to-site server running locally. There is one user, a Synology raid device that phones home and stays connected 24x7. It is used as an off-site backup device accepting snapshot replication and file share backups. It's been running without issues. It seems to be the site-to-site tunnels that are tripping us up, on the client-side.

    • T

      Gateway for ExpressVPN OpenVPN client not coming up

      OpenVPN
      • openvpn client expressvpn gateway offline • • Tikiyetti
      5
      0
      Votes
      5
      Posts
      390
      Views

      T

      @viragomann omg facepalm yep, you're totally right. Thanks. I know what I did now. When I initially set up the OpenVPN client I entered the wrong credentials (and didn't realize it) so it didn't appear as an option when I was initially assigning an interface so I arbitrarily selected em2 not knowing it should have said something like ovpnc1.

      Went back just now and changed it. Gateway shows as up. And was able to select it in my firewall rule. Beautiful. Thank you very much.

    • A

      Bug: More than one OpenVPN client does not connect

      OpenVPN
      • 2.5.1 openvpn client • • Arno 0
      2
      0
      Votes
      2
      Posts
      189
      Views

      G

      I have the similar issue after upgrading to 21.02.2 version on my Negate SG-5100. Prior to upgrade all OpenVPN connections were working fine. After upgrade only one VPN connection is working, other is connected but no traffic passing. On disabling the VPN on connection 2, data traffic starts but not on VPN.

      Not sure if it's a bug generated by pfsense update.

    • B

      CyberGhost OpenVPN on pfSense

      General pfSense Questions
      • cyberghost openvpn client • • Belvac
      5
      1
      Votes
      5
      Posts
      3129
      Views

      AKEGECA

      @belvac Just a suggestion, some of my clients use Nordvpn with pfsense to bypass region restrictions. As you know Cyberghost bought by Israeli agency. Also Cyberghost fee is almost the same as Nordvpn (3 year plan for $3).

      Anyway please take a look at this guide first:
      https://support.nordvpn.com/Connectivity/Router/1626958942/pfSense-2-5-Setup-with-NordVPN.htm

      Second could you download Cyberghost configuration file, I prefer TCP Switzerland and copy paste here the whole text content of Cyberghost configuration file.
      I don't promise anything but I'll try to help you.

    • L

      Having issues connecting pfsense openvpn client to openvpn AS

      OpenVPN
      • openvpn client • • LakeWorthB
      2
      0
      Votes
      2
      Posts
      227
      Views

      L

      openvpn.txt

      Log kept getting flagged as spam, so it is attached.

    • R

      Using both openvpn server and openvpn client results in intermittent internet access on LAN

      OpenVPN
      • openvpn client • • routeless
      3
      0
      Votes
      3
      Posts
      167
      Views

      R

      If anyone else hits this, netgate support found I was using "openvpn" in the outbound NAT rules as the interface. Specifying this to the VPN Client interface resolved the issues.

    • L

      Tunnel Unbound through OpenVPN client, if available

      DHCP and DNS
      • dns unbound vpn openvpn client • • Logic
      1
      0
      Votes
      1
      Posts
      413
      Views

      No one has replied

    • L

      Unbound durch OpenVPN Client tunneln, sofern verfügbar

      Deutsch
      • vpn unbound firewall rules dns resolver openvpn client • • Logic
      11
      0
      Votes
      11
      Posts
      585
      Views

      Bob.DigB

      Musste leider feststellen, dass "meine" Lösung wohl nur eine gewisse Zeit funktioniert. Irgendwann scheint es so, dass Windows den "ersten" DNS-Server nicht mehr nutzt und daher interne Namen nicht mehr auflöst.
      Habe daher vorerst auf IPs umgestellt.

    • J

      DNS Resolver (unbound) fails after reboot unless manually restarted

      DHCP and DNS
      • pfsense 2.5 unbound openvpn client • • josh.hall
      23
      2
      Votes
      23
      Posts
      4036
      Views

      R

      Now testing the SG-2100 with 23.05.1 for the similar setup but with multiple Wireguards instead of multiple OpenVPNs.
      Unbound starts correctly.
      I am guessing that Wireguard is faster than OpenVPN starting at boot.
      Thanks again.

    • N

      opening routes to the LAN

      General pfSense Questions
      • openvpn client • • nick.loenders
      2
      0
      Votes
      2
      Posts
      142
      Views

      stephenw10S

      Is this just a dupe of your other ticket?
      https://forum.netgate.com/topic/160507/pfsense-and-openvpn

    • P

      OpenVPN Tunnel network metric

      OpenVPN
      • openvpn openvpn routing openvpn client • • pszafer
      3
      0
      Votes
      3
      Posts
      151
      Views

      P

      IMO it's impossible to tell active directory domain member to not look for dns record of domain name.

    • H

      Accessing Client Side VLANs While Connected As Remote VPN Client

      OpenVPN
      • openvpn client openvpn vlan client vlan local vlan local vlans • • hieroglyph
      10
      0
      Votes
      10
      Posts
      238
      Views

      N

      @hieroglyph With an established s2s vpn you could connect remotely to the server side of the vpn and access both sites with one connection, concurrently.

      But this adds unecessary points of failure. And since these are home networks, you could be better off with two openvn servers listening at each site , and connect to each as needed.
      A site to site vpn could also co exist, so you don't have to do anything when at home.

      of course you can have it all. S2s, two openvpn listening at both sites, and access to everywhere no matter where you connect.

      Happy tweaking.