• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

How to use pfSense OpenVPN and Dynamic DNS address

Scheduled Pinned Locked Moved OpenVPN
4 Posts 4 Posters 9.7k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • I
    ItsPaPPy
    last edited by Jul 28, 2018, 8:45 PM

    I am using pfSense from home, but my IP changes. So i have setup Dynamic DNS with no-ip, and that shows green in pfSense. I would like to setup OpenVPN so when I am away, I can connect into my network. But I do not know how to set it up to use the Dynamic DNS alias.

    1 Reply Last reply Reply Quote 0
    • J
      JKnott
      last edited by Jul 28, 2018, 9:01 PM

      Assuming that Dynamic DNS is properly tracking your address, just point OpenVPN to the host name and don't worry about the actual IP address. Also, depending on your ISP, you may have a consistent host name already. With my cable modem, the host name is based on the modem and firewall MAC addresses and won't change unless I change hardware. So, even though I use DHCP on IPv4, I don't have to worry about it, should the IP address change. However, even it is virtually static.

      PfSense running on Qotom mini PC
      i5 CPU, 4 GB memory, 32 GB SSD & 4 Intel Gb Ethernet ports.
      UniFi AC-Lite access point

      I haven't lost my mind. It's around here...somewhere...

      1 Reply Last reply Reply Quote 0
      • D
        Derelict LAYER 8 Netgate
        last edited by Jul 28, 2018, 10:17 PM

        Yeah it's really a setting in the client. Tell it to connect to the dynip hostname.

        You can select this and save it as the default in the OpenVPN client exporter.

        You just tell the server to listen on WAN. It will be listening on whatever your address happens to be at the time.

        You probably also want to generate a server certificate with the dyndns hostname as the CN and a SAN.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • M
          marvosa
          last edited by Jul 30, 2018, 3:55 PM

          This is fairly straightforward. When exporting your clients, choose "other" in the Host Name Resolution box and enter your Dynamic DNS FQDN.

          If you don't want to re-export existing clients, you can manually edit the client's .ovpn file and replace the IP with an FQDN on the remote line.

          1 Reply Last reply Reply Quote 1
          1 out of 4
          • First post
            1/4
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
            This community forum collects and processes your personal information.
            consent.not_received