Pfsense vpn client binding to wrong/unknown ip?



  • Very often my pfsense disconnect from vpn server and the is unable to reconnect
    The logs show binding attempt to a wrong ip address

    Jul 31 19:03:02 	openvpn 	77817 	Exiting due to fatal error
    Jul 31 19:03:02 	openvpn 	77817 	TCP/UDP: Socket bind failed on local address [AF_INET]100.120.247.142: Can't assign requested address
    Jul 31 19:03:02 	openvpn 	77817 	Initializing OpenSSL support for engine 'cryptodev'
    Jul 31 19:03:02 	openvpn 	77817 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
    Jul 31 19:03:02 	openvpn 	77817 	WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
    Jul 31 19:03:02 	openvpn 	77524 	library versions: OpenSSL 1.0.1s-freebsd 1 Mar 2016, LZO 2.09
    Jul 31 19:03:02 	openvpn 	77524 	OpenVPN 2.3.11 i386-portbld-freebsd10.3 [SSL (OpenSSL)] [LZO] [MH] [IPv6] built on Jul 19 2016
    Jul 31 19:02:56 	openvpn 	3499 	/usr/local/sbin/ovpn-linkdown ovpnc2 1500 1558 172.16.2.4 255.255.255.0 init
    Jul 31 19:02:56 	openvpn 	3499 	Exiting due to fatal error
    Jul 31 19:02:56 	openvpn 	3499 	TCP/UDP: Socket bind failed on local address [AF_INET]100.120.247.142: Can't assign requested address
    Jul 31 19:02:56 	openvpn 	3499 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
    Jul 31 19:02:56 	openvpn 	3499 	WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
    Jul 31 19:02:54 	openvpn 	3499 	SIGUSR1[soft,ping-restart] received, process restarting
    Jul 31 19:02:54 	openvpn 	3499 	[hostname] Inactivity timeout (--ping-restart), restarting
    
    

    100.120.247.142 is unknown to me

     WAN_PPPOE 	81.174.0.21 	8.8.8.8 	30.971ms 	7.092ms 	10% 	Online 	Interface WAN_PPPOE Gateway
    OPT1_PPP 	10.64.64.1 	8.8.4.4 	77.312ms 	9.478ms 	0.0% 	Online 	Interface OPT1_PPP Gateway
    HENETV6_TUNNELV6 	2001:470:25:2ae::1 	2001:470::::1 	20.15ms 	8.876ms 	12% 	Online 	Interface HENETV6_TUNNELV6 Gateway 
    
    
    
        StatusInterfaces
    
    WAN Interface (wan, pppoe0)
    
    Status
        up
    PPPoE
        up 
    
    Uptime
        00:10:06
    MAC Address
        00:00:00:00:00:00 - Xerox
    IPv4 Address
        88.149.168.187
    Subnet mask IPv4
        255.255.255.255
    Gateway IPv4
        81.174.0.21
    IPv6 Link Local
        fe80::230:18ff:fead:2ed0%vr0
    DNS servers
        127.0.0.1
        8.8.8.8
        208.67.222.222
        8.8.4.4
        208.67.220.220
    MTU
        1492
    In/out packets
        110869162/80199107 (117.52 GiB/32.92 GiB)
    In/out packets (pass)
        110869162/80199107 (117.52 GiB/32.92 GiB)
    In/out packets (block)
        24254/823 (613 KiB/230 KiB)
    In/out errors
        0/0
    Collisions
        0	
    
    LAN Interface (lan, re0)
    
    Status
        up
    MAC Address
        00:30:18:a6:2b:c8 - Jetway Information
    IPv4 Address
        192.168.1.250
    Subnet mask IPv4
        255.255.255.0
    IPv6 Link Local
        fe80::230:18ff:fea6:2bc8%re0
    IPv6 Address
        2001:470::::1
    Subnet mask IPv6
        64
    MTU
        1500
    Media
        1000baseT <full-duplex>In/out packets
        78618693/109005113 (32.75 GiB/115.74 GiB)
    In/out packets (pass)
        78618693/109005113 (32.75 GiB/115.74 GiB)
    In/out packets (block)
        1445/0 (162 KiB/0 B)
    In/out errors
        0/0
    Collisions
        0	
    
    WAN2 Interface (opt1, ppp1)
    
    Status
        up
    PPP
        up 
    
    Uptime
        04:29:29
    Cell Signal (RSSI)
        rssi:0 level:-113dBm percent:0%
    Cell Mode
        None, No Service Mode
    Cell SIM State
        Invalid SIM/locked State
    Cell Service
        No Service
    MAC Address
        00:00:00:00:00:00 - Xerox
    IPv4 Address
        10.101.222.247
    Subnet mask IPv4
        255.255.255.255
    Gateway IPv4
        10.64.64.1
    IPv6 Link Local
        fe80::230:18ff:fea6:2bc8%ppp1
    MTU
        1492
    In/out packets
        237150/314063 (16.61 MiB/35.50 MiB)
    In/out packets (pass)
        237150/314063 (16.61 MiB/35.50 MiB)
    In/out packets (block)
        233/6 (0 B/312 B)
    In/out errors
        0/0
    Collisions
        0	
    
    GUEST Interface (opt2, re1)
    
    Status
        up
    MAC Address
        00:30:18:a6:2b:c9 - Jetway Information
    IPv4 Address
        192.168.2.250
    Subnet mask IPv4
        255.255.255.0
    IPv6 Link Local
        fe80::230:18ff:fea6:2bc9%re1
    MTU
        1500
    Media
        100baseTX <full-duplex>In/out packets
        734340/1490795 (145.55 MiB/1.72 GiB)
    In/out packets (pass)
        734340/1490795 (145.55 MiB/1.72 GiB)
    In/out packets (block)
        3937/1 (525 KiB/533 B)
    In/out errors
        0/0
    Collisions
        0	
    
    HENETV6 Interface (opt3, gif0)
    
    Status
        up
    MAC Address
        00:00:00:00:00:00 - Xerox
    IPv6 Link Local
        fe80::230:18ff:fea6:2bc8%gif0
    IPv6 Address
        2001:470::::2
    Subnet mask IPv6
        128
    MTU
        1500
    In/out packets
        407614/408215 (199.99 MiB/30.23 MiB)
    In/out packets (pass)
        407614/408215 (199.99 MiB/30.23 MiB)
    In/out packets (block)
        1627/0 (3 KiB/0 B)
    In/out errors
        0/0
    Collisions
        0</full-duplex></full-duplex> 
    

Log in to reply