Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How to remove warning message

    Scheduled Pinned Locked Moved OpenVPN
    5 Posts 3 Posters 1.9k Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • gregeehG Offline
      gregeeh
      last edited by

      Hi all,

      pfSense Version 2.4.3 with OpenVPN Client setup to the VPN Provider.

      I'm getting the following warning message in the OpenVPN logs every hour:

      Jun 17 06:39:53 	openvpn 	5178 	WARNING: 'keydir' is present in remote config but missing in local config, remote='keydir 0'

      I have searched the web and not been able to find a solution on how I can remove it. Even the man pages don't have a lot of information on keydir.

      Any help appreciated.

      TIA

      Greg

      PfSense running on Qotom mini PC
      CPU N3150, 2 GB memory, 32 GB SSD & 2 Realtek Gb Ethernet ports.
      UniFi AC-Lite access point

      1 Reply Last reply Reply Quote 0
      • B Offline
        bcruze
        last edited by

        i have this message as well.

        although my pfsense box works reliably 100% of the time. i am curious what this comes from

        1 Reply Last reply Reply Quote 0
        • PippinP Offline
          Pippin
          last edited by

          'keydir' in the log refers to the directive --key-direction of the tls-auth key. The server has key-direction 0 and the client(s) key-direction 1

          Did you get a tls-auth key from the provider or not?
          If so set key-direction 1.
          If NCP is used you can probably ignore the warning, don't know, no full
          log provided...

          I gloomily came to the ironic conclusion that if you take a highly intelligent person and give them the best possible, elite education, then you will most likely wind up with an academic who is completely impervious to reality.
          Halton Arp

          1 Reply Last reply Reply Quote 0
          • B Offline
            bcruze
            last edited by bcruze

            i've been trying to post my verb 3 logs but it keeps getting tagged as spam0_1538310511942_New Text Document (2).txt

            1 Reply Last reply Reply Quote 0
            • B Offline
              bcruze
              last edited by

              i removed key-direction 1 from my config and its gone.

              i guess the provider does not support this functionality

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.