• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

I'm having really bad problems getting OpenVPN up and running.

Scheduled Pinned Locked Moved OpenVPN
8 Posts 2 Posters 797 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • T
    TheHermit
    last edited by Apr 15, 2018, 4:33 AM Apr 14, 2018, 7:28 PM

    Hey,

    I've been at this all day and since last night. I have contacted my OpenVPN provider and they are not sure what the problem is as well.

    I have been trying too get the Client Open VPN up and running with out success as when I have looked at my Gateways under the Dashboard the Connection next too WAN is showing as unknown.

    I have followed various steps and went threw their help desk for the past three hours as of posting this thread. They wanted too set up team viewer but I have had problems installing that App on my System along with other Apps since upgrading too Mint 18.3 from 17.3 .

    I have been playing with the NAT rules, checked the OpenVPN settings, I've checked the logs and start and stopped the VPN Client with no luck.

    I have been playing with a lot and now I think I have completely broke the set up as I cant get internet access when selecting Firewall \ NAT \ outbound \ Manual out Bound NAT Rule Generation AON ( Advanced Outbound NAT ) ..

    I have had too select (Automatic Out-Bound NAT Rule Generation)

    I have included some Screen Shots for you too look at.

    Can some one please take the time too possibly help with this. My VPN Provider hasn't a clue and if they dont I certainly dont.
    001.png
    001.png_thumb
    002.png
    002.png_thumb
    005.png
    005.png_thumb
    006.png
    006.png_thumb
    007.png
    007.png_thumb
    008.png
    008.png_thumb
    009.png
    009.png_thumb
    010.png
    010.png_thumb
    011.png
    011.png_thumb
    012.png
    012.png_thumb
    013.png
    013.png_thumb
    014.png
    014.png_thumb
    015.png
    015.png_thumb

    1 Reply Last reply Reply Quote 0
    • D
      Derelict LAYER 8 Netgate
      last edited by Apr 15, 2018, 7:55 AM

      None of that information does any good without seeing how they want you to configure it.

      Look at the OpenVPN logs. They probably tell you exactly what is wrong.

      Chattanooga, Tennessee, USA
      A comprehensive network diagram is worth 10,000 words and 15 conference calls.
      DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
      Do Not Chat For Help! NO_WAN_EGRESS(TM)

      1 Reply Last reply Reply Quote 0
      • T
        TheHermit
        last edited by Apr 16, 2018, 1:09 AM

        Hey,

        I apologize for the lack of information. I have managed too get everything up and running as in the OpenVPN Peer too Peer Connection, Encryption, Install Certificates Etc but the one problematic thing I have had is the Default Gateway for the Open-VPN connection is showing as offline. I have completely reset my firewall using the console as I broke the set up as couldn't get online.

        The VPN is connected but its just the Gateway that showing offline under the Dashboard Widgets.

        Their is no traffic flowing threw in either direction.

        Apart from that everything looks good. Thats when the connection in the logs is showing as client disconnected.

        Again, sorry for the lack of information.  :)

        1 Reply Last reply Reply Quote 0
        • D
          Derelict LAYER 8 Netgate
          last edited by Apr 16, 2018, 1:14 AM

          The gateway address might not respond to pings. Doesn't sound like it's working super super to me if there is no traffic flowing.

          Chattanooga, Tennessee, USA
          A comprehensive network diagram is worth 10,000 words and 15 conference calls.
          DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
          Do Not Chat For Help! NO_WAN_EGRESS(TM)

          1 Reply Last reply Reply Quote 0
          • T
            TheHermit
            last edited by Apr 16, 2018, 1:21 AM

            @Derelict:

            The gateway address might not respond to pings. Doesn't sound like it's working super super to me if there is no traffic flowing.

            Would that be a problem with my VPN Providers Default Gateway as in their default gateway does not responding too ping’s.

            Would this be a problem with the VPN Set up under VPN \ OpenVPN \ , or a problem with the configuration of my PFSense set-up.

            1 Reply Last reply Reply Quote 0
            • D
              Derelict LAYER 8 Netgate
              last edited by Apr 16, 2018, 1:26 AM

              Not really. You do not need the gateway to be up for things to be working unless you are trying to get some sort of multi-wan going using the OpenVPN.

              Chattanooga, Tennessee, USA
              A comprehensive network diagram is worth 10,000 words and 15 conference calls.
              DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
              Do Not Chat For Help! NO_WAN_EGRESS(TM)

              1 Reply Last reply Reply Quote 0
              • T
                TheHermit
                last edited by Apr 16, 2018, 1:43 AM

                @Derelict:

                Not really. You do not need the gateway to be up for things to be working unless you are trying to get some sort of multi-wan going using the OpenVPN.

                I'm sitting hear really thinking about this and when entering the VPN Host Name under VPN \ OpenVPN \ Clients \ Edit \ "Server Host or Address"

                This would be the above in Bold the actual Web Address of the remote Open VPN Server; for example. .com ..

                "server-location.server.com"

                Not an actual I.P Address even if accepted ..

                1 Reply Last reply Reply Quote 0
                • D
                  Derelict LAYER 8 Netgate
                  last edited by Apr 16, 2018, 1:52 AM

                  Probably a host name. The provider needs to be free to change IP addresses without breaking everyone.

                  Chattanooga, Tennessee, USA
                  A comprehensive network diagram is worth 10,000 words and 15 conference calls.
                  DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
                  Do Not Chat For Help! NO_WAN_EGRESS(TM)

                  1 Reply Last reply Reply Quote 0
                  1 out of 8
                  • First post
                    1/8
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                    This community forum collects and processes your personal information.
                    consent.not_received