OPEN VPN SITE to SITE



  • Hi Guys,
    i have created a OPENVPN site to SITE between two office using 2.4.1 version.
    however the tunnel is coming up and don't know why !!!
    i have created and deleted the tunnel like 100 time but can't seem to get it online.
    Can someone please advise why , the below are the log of the client side.

    Nov 5 15:56:18
    openvpn[61217]: UDP link remote: [AF_INET]65.66.7.7:10448
    Nov 5 15:56:18
    openvpn[61217]: UDP link local (bound): [AF_INET]55.78.655.66:10448
    Nov 5 15:56:18
    openvpn[61217]: TCP/UDP: Preserving recently used remote address: [AF_INET]65.66.7.7:10448
    Nov 5 15:56:18
    openvpn[61217]: /usr/local/sbin/ovpn-linkup ovpnc2 1500 1605 10.8.0.2 10.8.0.1 init
    Nov 5 15:56:18
    openvpn[61217]: /sbin/ifconfig ovpnc2 10.8.0.2 10.8.0.1 mtu 1500 netmask 255.255.255.255 up
    Nov 5 15:56:18
    openvpn[61217]: do_ifconfig, tt->did_ifconfig_ipv6_setup=0
    Nov 5 15:56:18
    openvpn[61217]: TUN/TAP device /dev/tun2 opened
    Nov 5 15:56:18
    openvpn[61217]: TUN/TAP device ovpnc2 exists previously, keep at program end
    Nov 5 15:56:18
    openvpn[61217]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
    Nov 5 15:56:18
    openvpn[60678]: library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.10
    Nov 5 15:56:18
    openvpn[60678]: OpenVPN 2.4.4 amd64-portbld-freebsd11.0 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Oct 3 2017
    Nov 5 15:56:18
    openvpn[60678]: disabling NCP mode (--ncp-disable) because not in P2MP client or server mode
    Nov 5 15:56:18
    openvpn[30127]: SIGTERM[hard,] received, process exiting
    Nov 5 15:56:17
    openvpn[30127]: /usr/local/sbin/ovpn-linkdown ovpnc2 1500 1605 10.8.0.2 10.8.0.1 init
    Nov 5 15:56:17
    openvpn[30127]: event_wait : Interrupted system call (code=4)
    


  • Let's first identify the issue.  You stated:

    i have created a OPENVPN site to SITE between two office using 2.4.1 version.
    however the tunnel is coming up and don't know why !!!

    So, is the tunnel up, but not passing traffic or are you having trouble getting the tunnel up?

    Post the server1.conf and config1.conf from the server and client respectively.

    Is PFsense the edge firewall/router at both sites?  If not, post a network map.



  • Thank you for your answer,
    we have found the error was on the IP dresses of the WAN
    thank you


Log in to reply