• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

OpenVPN - auto generated rules are using invalid syntax - possible bug???

Scheduled Pinned Locked Moved OpenVPN
3 Posts 2 Posters 2.0k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • R
    Ronski
    last edited by Apr 30, 2018, 9:47 PM

    I'm a complete novice when it comes to PFSense, so please excuse me if I waffle on a bit.

    I've had OpenVPN working on my installation for ages with a VDSL connection.

    This weekend I had Virgin Media connected up, at first I had both connections set up load balanced, but as the VDSL line will soon be cancelled I turned that off.

    I'm going to try and remember how I went about things, as potentially that could have caused the issues, but it's all a bit of a blur.

    I believe I copied the rule from the VDSL interface to VirginMedia interface, may have fiddled around in the OpenVPN settings as well, needless to say things didn't work.

    I deleted the rules from the VirginMedia & possibly the VDSL interface, and deleted the OpenVPN server, probably several times.

    Eventually realised that the rules under OpenVPN weren't being deleted automatically so deleted the four that had built up there  :-[

    So for the umpteenth time, and this time making sure I deleted everything, with some reboots thrown in for good measure I tried again.

    At some point, well multiple points I got the following error - I didn't notice at first  :-[

    [code]There were error(s) loading the rules: /tmp/rules.debug:190: unknown protocol udp4 - The line in question reads [190]: pass in quick on $VIRGINMEDIA reply-to ( em2 80.6.28.1 ) inet proto udp4 from any to <<removed my="" public="" ip="" address="">> tracker 1525018272 keep state label "USER_RULE: OpenVPN OpenVPN Connection wizard"

    Turns out one of the OpenVPN auto generated rules didn't have the protocol set to UDP (it was blank), it must of been the one listed under the interface (the other under OpenVPN doesn't mention UDP), once I set the protocol to UDP the error went away and my VPN started working.

    So not sure if all my deleting things and running the wizard multiple times that's caused issues, or there is a bug - I certainly don't want to try to recreate it, but thought it worth mentioning.

    Oh and the version I'm using is:

    2.4.3-RELEASE (amd64)
    built on Mon Mar 26 18:02:04 CDT 2018
    FreeBSD 11.1-RELEASE-p7</removed>

    1 Reply Last reply Reply Quote 0
    • D
      Derelict LAYER 8 Netgate
      last edited by May 1, 2018, 2:38 AM

      And one more time:

      already fixed for 2.4.4

      https://redmine.pfsense.org/issues/8391

      Chattanooga, Tennessee, USA
      A comprehensive network diagram is worth 10,000 words and 15 conference calls.
      DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
      Do Not Chat For Help! NO_WAN_EGRESS(TM)

      1 Reply Last reply Reply Quote 0
      • R
        Ronski
        last edited by May 1, 2018, 6:01 AM

        Thanks for the feedback.

        1 Reply Last reply Reply Quote 0
        3 out of 3
        • First post
          3/3
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
          This community forum collects and processes your personal information.
          consent.not_received