Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login
    Introducing Netgate Nexus: Multi-Instance Management at Your Fingertips.

    Openvpn firewall issues

    Scheduled Pinned Locked Moved Firewalling
    6 Posts 3 Posters 1.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • W Offline
      wargames
      last edited by

      issues down below.

      1 Reply Last reply Reply Quote 0
      • D Offline
        doktornotor Banned
        last edited by

        How's you invalid certificate related to pfSense?

        1 Reply Last reply Reply Quote 0
        • W Offline
          wargames
          last edited by

          because pfsense was blocking the handshake from completing. without pfsense the pc in question could connect to the outside vpn easily but when behind pfsense it couldn't so pfsense was the issue. It seems to have also been a nat issue with pfsense? Which I have resolved but moving on to other things in my setup i have encountered other issues.

          My other issues involves portforwarding. whenever I hit my wan address I would like to portforward to my web server/rocketchat server. webserver should be port 80/443 and rocket should be 3000 but I am receiving timeouts from the outside when I hit my wan address.

          nat
          http://i.imgur.com/ndcAVcD.png

          rules
          http://i.imgur.com/5R80LZq.png

          1 Reply Last reply Reply Quote 0
          • D Offline
            doktornotor Banned
            last edited by

            Dude, certificate not yet valid has nothing to do with pfSense. Fix your clock.

            1 Reply Last reply Reply Quote 0
            • DerelictD Offline
              Derelict LAYER 8 Netgate
              last edited by

              Not to mention: CN=ChangeMe

              Chattanooga, Tennessee, USA
              A comprehensive network diagram is worth 10,000 words and 15 conference calls.
              DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
              Do Not Chat For Help! NO_WAN_EGRESS(TM)

              1 Reply Last reply Reply Quote 0
              • W Offline
                wargames
                last edited by

                @doktornotor:

                Dude, certificate not yet valid has nothing to do with pfSense. Fix your clock.

                except  pfsense was blocking the connection from completing but I have fixed that issue and can connect to the vpn.@Derelict:

                Not to mention: CN=ChangeMe

                doesn't matter this is a temp vpn setup for a class project and the vpn will die after the project.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2026 Rubicon Communications LLC (Netgate). All rights reserved.