Solved TCP/UDP: Incoming packet rejected from [AF_INET]



  • hello!

    After create a vpn we receive this error:

    TCP/UDP: Incoming packet rejected from [AF_INETexpected peer address: [AF_INET]public-IP(200....):1194 (allow this incoming source address/port by removing --remote or adding --float)

    Someone know how to fix this?
    What is wrong config?

    Thanks for attention and help

    Douglas



  • Add the directive
    float
    to server and client(s) config.
    Possibly there`s a check box available in the server and/or client export package.



  • Hello All
    The error was on Firewall-Wan-Rule Protocol for openvpn. The wizard selected the "any" protocol. So, change to "UDP"
    Now works fine

    Thanks attention and help

    Douglas



  • That`s odd .....


  • Rebel Alliance

    what version of pfsense are you running - I thought there was a bug report about firewall rules created for openvpn being incorrect.. But that was corrected..

    https://redmine.pfsense.org/issues/8391

    But it was using tcp4 vs tcp.. I just ran through the wizard and created a new udp server and it did not create any rule.. It created correct UDP with port and ipv4

    0_1527778650571_udpopenvpnwizard.png

    Running 2.4.3p1


 

© Copyright 2002 - 2018 Rubicon Communications, LLC | Privacy Policy