Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Open VPN Server Issue

    OpenVPN
    2
    8
    1114
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • V
      vinayks76 last edited by

      Hi,
      I am using pfsense 2.4.4 as My Firewall. I am getting following errors. I am a bit new to Pfsense and Open VPN.
      FreeBSD ifconfig failed: external program exited with error status: 1. Kindly advice me
      I am also getting the error : could not detrmine ipv4/ipv6 protocol. using AF_INET6

      Kindly advice

      1 Reply Last reply Reply Quote 0
      • Derelict
        Derelict LAYER 8 Netgate last edited by

        You are probably trying to add a route to the routing table that already exists.

        You didn't provide enough log entries to tell.

        Chattanooga, Tennessee, USA
        The pfSense Book is free of charge!
        DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • V
          vinayks76 last edited by

          Kindly have a look at my server logs

          Apr 15 20:49:14 openvpn 9600 NOTE: the current –script-security setting may allow this configuration to call user-defined scripts
          Apr 15 20:49:14 openvpn 10581 disabling NCP mode (--ncp-disable) because not in P2MP client or server mode
          Apr 15 20:49:14 openvpn 10581 OpenVPN 2.4.5 amd64-portbld-freebsd11.1 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Apr 2 2018
          Apr 15 20:49:14 openvpn 10581 library versions: OpenSSL 1.0.2m-freebsd 2 Nov 2017, LZO 2.10
          Apr 15 20:49:14 openvpn 10599 NOTE: the current –script-security setting may allow this configuration to call user-defined scripts
          Apr 15 20:49:14 openvpn 9600 TUN/TAP device ovpns1 exists previously, keep at program end
          Apr 15 20:49:14 openvpn 9600 TUN/TAP device /dev/tun1 opened
          Apr 15 20:49:14 openvpn 9600 ioctl(TUNSIFMODE): Device busy (errno=16)
          Apr 15 20:49:14 openvpn 9600 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
          Apr 15 20:49:14 openvpn 9600 /sbin/ifconfig ovpns1 192.168.10.1 192.168.10.2 mtu 1500 netmask 255.255.255.0 up
          Apr 15 20:49:15 openvpn 9600 /usr/local/sbin/ovpn-linkup ovpns1 1500 1621 192.168.10.1 255.255.255.0 init
          Apr 15 20:49:15 openvpn 10599 TUN/TAP device ovpnc2 exists previously, keep at program end
          Apr 15 20:49:15 openvpn 10599 TUN/TAP device /dev/tun2 opened
          Apr 15 20:49:15 openvpn 10599 ioctl(TUNSIFMODE): Device busy (errno=16)
          Apr 15 20:49:15 openvpn 10599 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
          Apr 15 20:49:15 openvpn 10599 /sbin/ifconfig ovpnc2 192.168.10.2 192.168.10.1 mtu 1500 netmask 255.255.255.255 up
          Apr 15 20:49:15 openvpn 10599 FreeBSD ifconfig failed: external program exited with error status: 1
          Apr 15 20:49:15 openvpn 10599 Exiting due to fatal error
          Apr 15 20:49:15 openvpn 9600 Could not determine IPv4/IPv6 protocol. Using AF_INET6
          Apr 15 20:49:15 openvpn 9600 setsockopt(IPV6_V6ONLY=0)
          Apr 15 20:49:15 openvpn 9600 UDPv6 link local (bound): [AF_INET6][undef]:1194
          Apr 15 20:49:15 openvpn 9600 UDPv6 link remote: [AF_UNSPEC]
          Apr 15 20:49:15 openvpn 9600 Initialization Sequence Completed
          Apr 16 06:51:11 openvpn 8685 WARNING: POTENTIALLY DANGEROUS OPTION –verify-client-cert none|optional (or --client-cert-not-required) may accept clients which do not present a certificate
          Apr 16 06:51:11 openvpn 8685 OpenVPN 2.4.5 amd64-portbld-freebsd11.1 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Apr 2 2018
          Apr 16 06:51:11 openvpn 8685 library versions: OpenSSL 1.0.2m-freebsd 2 Nov 2017, LZO 2.10
          Apr 16 06:51:11 openvpn 8743 GDG: problem writing to routing socket
          Apr 16 06:51:11 openvpn 8743 NOTE: the current –script-security setting may allow this configuration to call user-defined scripts
          Apr 16 06:51:11 openvpn 8743 TUN/TAP device ovpns1 exists previously, keep at program end
          Apr 16 06:51:11 openvpn 8743 TUN/TAP device /dev/tun1 opened
          Apr 16 06:51:11 openvpn 8743 ioctl(TUNSIFMODE): Device busy (errno=16)
          Apr 16 06:51:11 openvpn 8743 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
          Apr 16 06:51:11 openvpn 8743 /sbin/ifconfig ovpns1 192.168.10.1 192.168.10.2 mtu 1500 netmask 255.255.255.0 up
          Apr 16 06:51:11 openvpn 8743 /usr/local/sbin/ovpn-linkup ovpns1 1500 1621 192.168.10.1 255.255.255.0 init
          Apr 16 06:51:11 openvpn 8743 Could not determine IPv4/IPv6 protocol. Using AF_INET6
          Apr 16 06:51:11 openvpn 8743 setsockopt(IPV6_V6ONLY=0)
          Apr 16 06:51:11 openvpn 8743 UDPv6 link local (bound): [AF_INET6][undef]:1194
          Apr 16 06:51:11 openvpn 8743 UDPv6 link remote: [AF_UNSPEC]
          Apr 16 06:51:11 openvpn 8743 Initialization Sequence Completed
          Apr 16 06:51:11 openvpn 10483 disabling NCP mode (–ncp-disable) because not in P2MP client or server mode
          Apr 16 06:51:11 openvpn 10483 OpenVPN 2.4.5 amd64-portbld-freebsd11.1 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Apr 2 2018
          Apr 16 06:51:11 openvpn 10483 library versions: OpenSSL 1.0.2m-freebsd 2 Nov 2017, LZO 2.10
          Apr 16 06:51:11 openvpn 10576 NOTE: the current –script-security setting may allow this configuration to call user-defined scripts
          Apr 16 06:51:11 openvpn 10576 TUN/TAP device ovpnc2 exists previously, keep at program end
          Apr 16 06:51:11 openvpn 10576 TUN/TAP device /dev/tun2 opened
          Apr 16 06:51:11 openvpn 10576 ioctl(TUNSIFMODE): Device busy (errno=16)
          Apr 16 06:51:11 openvpn 10576 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
          Apr 16 06:51:11 openvpn 10576 /sbin/ifconfig ovpnc2 192.168.10.2 192.168.10.1 mtu 1500 netmask 255.255.255.255 up
          Apr 16 06:51:11 openvpn 10576 FreeBSD ifconfig failed: external program exited with error status: 1
          Apr 16 06:51:11 openvpn 10576 Exiting due to fatal error

          1 Reply Last reply Reply Quote 0
          • V
            vinayks76 last edited by

            My client Logs

            Sun Apr 15 21:04:50 2018 OpenVPN 2.4.4 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Sep 26 2017
            Sun Apr 15 21:04:50 2018 Windows version 6.2 (Windows 8 or greater) 64bit
            Sun Apr 15 21:04:50 2018 library versions: OpenSSL 1.0.2l  25 May 2017, LZO 2.10
            Enter Management Password:
            Sun Apr 15 21:04:57 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Sun Apr 15 21:04:57 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Sun Apr 15 21:04:57 2018 setsockopt(IPV6_V6ONLY=0)
            Sun Apr 15 21:04:57 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Sun Apr 15 21:04:57 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 08:39:50 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 08:39:50 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 08:39:55 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 08:39:55 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 08:39:55 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 08:39:55 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 08:39:55 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 08:41:55 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 08:41:55 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 08:42:00 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 08:42:00 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 08:42:00 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 08:42:00 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 08:42:00 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 08:44:00 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 08:44:00 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 08:44:05 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 08:44:05 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 08:44:05 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 08:44:05 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 08:44:05 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 08:46:05 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 08:46:05 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 08:46:10 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 08:46:10 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 08:46:10 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 08:46:10 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 08:46:10 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 08:48:10 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 08:48:10 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 08:48:20 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 08:48:20 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 08:48:20 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 08:48:20 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 08:48:20 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 08:50:21 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 08:50:21 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 08:50:41 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 08:50:41 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 08:50:41 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 08:50:41 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 08:50:41 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 08:52:41 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 08:52:41 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 08:53:21 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 08:53:21 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 08:53:21 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 08:53:21 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 08:53:21 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 08:55:21 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 08:55:21 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 08:56:41 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 08:56:41 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 08:56:41 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 08:56:41 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 08:56:41 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 08:58:41 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 08:58:41 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 09:01:21 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 09:01:21 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 09:01:21 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 09:01:21 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 09:01:21 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 09:03:21 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 09:03:21 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 09:08:21 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 09:08:21 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 09:08:21 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 09:08:21 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 09:08:21 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 09:10:21 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 09:10:21 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 09:15:21 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 09:15:21 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 09:15:21 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 09:15:21 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 09:15:21 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 09:17:21 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 09:17:21 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 09:22:21 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 09:22:21 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 09:22:21 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 09:22:21 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 09:22:21 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 09:24:21 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 09:24:21 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 09:29:21 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 09:29:21 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 09:29:21 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 09:29:21 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 09:29:21 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 09:31:21 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 09:31:21 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 09:36:21 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 09:36:21 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 09:36:21 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 09:36:21 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 09:36:21 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 09:38:21 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 09:38:21 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 09:43:21 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 09:43:21 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 09:43:21 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 09:43:21 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 09:43:21 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 09:45:21 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 09:45:21 2018 SIGUSR1[soft,ping-restart] received, process restarting
            Mon Apr 16 09:50:21 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
            Mon Apr 16 09:50:21 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET6
            Mon Apr 16 09:50:21 2018 setsockopt(IPV6_V6ONLY=0)
            Mon Apr 16 09:50:21 2018 UDPv6 link local (bound): [AF_INET6][undef]:1194
            Mon Apr 16 09:50:21 2018 UDPv6 link remote: [AF_UNSPEC]
            Mon Apr 16 09:52:22 2018 [UNDEF] Inactivity timeout (–ping-restart), restarting
            Mon Apr 16 09:52:22 2018 SIGUSR1[soft,ping-restart] received, process restarting

            1 Reply Last reply Reply Quote 0
            • Derelict
              Derelict LAYER 8 Netgate last edited by

              Apr 16 06:51:11  openvpn  8743  /sbin/ifconfig ovpns1 192.168.10.1 192.168.10.2 mtu 1500 netmask 255.255.255.0 up
              Apr 16 06:51:11  openvpn  8743  /usr/local/sbin/ovpn-linkup ovpns1 1500 1621 192.168.10.1 255.255.255.0 init
              Apr 16 06:51:11  openvpn  10576  /sbin/ifconfig ovpnc2 192.168.10.2 192.168.10.1 mtu 1500 netmask 255.255.255.255 up
              Apr 16 06:51:11  openvpn  10576  FreeBSD ifconfig failed: external program exited with error status: 1

              Looks like the same tunnel network being used by ovpns1 (server 1) as ovpnc2 (client 2) on the "Server"

              Chattanooga, Tennessee, USA
              The pfSense Book is free of charge!
              DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
              Do Not Chat For Help! NO_WAN_EGRESS(TM)

              1 Reply Last reply Reply Quote 0
              • V
                vinayks76 last edited by

                How to trouble shoot that. If you are ok , i can give my server to remote login. Kindly help me. I am using any desk / Team viewer  :'(

                1 Reply Last reply Reply Quote 0
                • Derelict
                  Derelict LAYER 8 Netgate last edited by

                  No, I am not going to do that.

                  Change the tunnel network on the server.

                  Chattanooga, Tennessee, USA
                  The pfSense Book is free of charge!
                  DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
                  Do Not Chat For Help! NO_WAN_EGRESS(TM)

                  1 Reply Last reply Reply Quote 0
                  • V
                    vinayks76 last edited by

                    Sure , i will try that. Thanks a lot for your time..

                    1 Reply Last reply Reply Quote 0
                    • First post
                      Last post