Problem with VPN configuration, please help
-
No, I just took a look at the server certificate options - there is no place where you to point to which server you issue the certificate. May be all instances using one server certificate?
-
Hi,
@jimp did some VERY great pfSense Videos on OpenVPN RAS combined with MultiWAN.
I recommend you check them out to get some things clear.
https://www.youtube.com/embed/qscIIZ10WTQ
https://www.youtube.com/embed/iJ5GACqfIGs
https://www.youtube.com/embed/ku-fNfJJV7w
https://www.youtube.com/embed/svZ6PKqGdtg-Rico
-
@rico Thanks Rico. I will take a look right now.
-
This post is deleted! -
@icomaznev just to add two cent to your problem: you have to upstream connections and want the OVPN instance to be available via both, right? Then you don't need to setup two servers or need other things in your clients configuration rather than the second "remote" statement as fallback. All you have to do (now with 2.4.4 there are other possibilities but this still works very nice for MultiWAN):
- configure your OVPN server instance running as localhost on udp/1194 (not WAN or WAN2)
- add a port forward on WAN and WAN2 (your ADSL line) for incoming traffic on WAN(2) address and port 1194 and forward that to localhost/1194
- check both forwards are active
- (optional) create DNS entries (if the IPs on WAN/WAN2 are static ones) for vpn1/vpn2.domain.example
- in OpenVPN client export choose "host name resolution" as "other" and enter IP or DNS for the WAN IP below
- in the "additional configuration options" box below enter the second "remote" statement needed für dns2/IP on WAN2
- export some client config and check both remote settings are in there
Now test that (connection to WAN1) and to test WAN2 simply edit the config and switch the remote lines to connect directly to WAN2. If both work, you're done and can rollout that configuration to your clients :)
Greets
Jens -
@Rico that was a spammer - their post has been removed and account banned (should be deleted but I don't have ability as only mod)... They had a link hidden in their post to nonsense.
-
@johnpoz Who is the spammer?
-
@jegr Thank you I will try this solution too
-
BTW guys I have another issue with my two internet lines.
When the "master one" (the FO one) goes down for some reason the pfsense acts as I expected - switches very fast to the second line (the ADCL one). BUT when the FO one is back (up and running) the pfsense doesnt switch back to the faster line, doesn't matter I have set up the FO as tear1 and the ADCL as 2 and they've been monitoring by different DNS servers.
I red tons of posts and watchet more then 10 videos concerning this issue. Obviously it is not only me who have such a problem.
So if somebody knows the solution ... please let share it.
Best regards to the community. -
The post above yours that assumed you were responding too asking for details and start their own thread ;) Its gone now.
