pfSense 2.4.4 (latest) and OpenVPN organisation



  • Hello everyone!
    I have installed 2.4.4-RELEASE-p1 (amd64)
    built on Mon Nov 26 11:40:26 EST 2018
    FreeBSD 11.2-RELEASE-p4
    I have to install OpenVPN between pfSense and remote client (on Windows 7 x64)
    Do all on a video https://www.youtube.com/watch?v=dBOQnApxzzQ&t=907s
    And when remote client try to connect to OpenVPN server, got errors:

    Tue Jan 08 04:13:57 2019 OpenVPN 2.4.6 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Apr 26 2018
    Tue Jan 08 04:13:57 2019 Windows version 6.1 (Windows 7) 64bit
    Tue Jan 08 04:13:57 2019 library versions: OpenSSL 1.1.0h  27 Mar 2018, LZO 2.10
    Enter Management Password:
    Tue Jan 08 04:14:04 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]MY_EXT_IP:1251
    Tue Jan 08 04:14:04 2019 UDP link local (bound): [AF_INET][undef]:1194
    Tue Jan 08 04:14:04 2019 UDP link remote: [AF_INET]MY_EXT_IP:1251
    Tue Jan 08 04:14:04 2019 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    Tue Jan 08 04:14:04 2019 OpenSSL: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed
    Tue Jan 08 04:14:04 2019 TLS_ERROR: BIO read tls_read_plaintext error
    Tue Jan 08 04:14:04 2019 TLS Error: TLS object -> incoming plaintext read error
    Tue Jan 08 04:14:04 2019 TLS Error: TLS handshake failed
    Tue Jan 08 04:14:04 2019 SIGUSR1[soft,tls-error] received, process restarting
    Tue Jan 08 04:14:09 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]MY_EXT_IP:1251
    Tue Jan 08 04:14:09 2019 UDP link local (bound): [AF_INET][undef]:1194
    Tue Jan 08 04:14:09 2019 UDP link remote: [AF_INET]MY_EXT_IP:1251
    Tue Jan 08 04:14:09 2019 OpenSSL: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed
    Tue Jan 08 04:14:09 2019 TLS_ERROR: BIO read tls_read_plaintext error
    Tue Jan 08 04:14:09 2019 TLS Error: TLS object -> incoming plaintext read error
    Tue Jan 08 04:14:09 2019 TLS Error: TLS handshake failed
    Tue Jan 08 04:14:09 2019 SIGUSR1[soft,tls-error] received, process restarting
    Tue Jan 08 04:14:14 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]MY_EXT_IP:1251
    Tue Jan 08 04:14:14 2019 UDP link local (bound): [AF_INET][undef]:1194
    Tue Jan 08 04:14:14 2019 UDP link remote: [AF_INET]MY_EXT_IP:1251
    Tue Jan 08 04:14:14 2019 TLS Error: Unroutable control packet received from [AF_INET]MY_EXT_IP:1251 (si=3 op=P_ACK_V1)
    Tue Jan 08 04:14:16 2019 TLS Error: Unroutable control packet received from [AF_INET]MY_EXT_IP:1251 (si=3 op=P_ACK_V1)
    Tue Jan 08 04:14:17 2019 TLS Error: Unroutable control packet received from [AF_INET]MY_EXT_IP:1251 (si=3 op=P_CONTROL_V1)
    Tue Jan 08 04:14:20 2019 TLS Error: Unroutable control packet received from [AF_INET]MY_EXT_IP:1251 (si=3 op=P_CONTROL_V1)
    Tue Jan 08 04:14:20 2019 TLS Error: Unroutable control packet received from [AF_INET]MY_EXT_IP:1251 (si=3 op=P_ACK_V1)
    Tue Jan 08 04:14:21 2019 SIGTERM[hard,] received, process exiting
    
    
    

    OpenVPN client version is 2.4.6
    What's wrong with this?



  • See your logs :
    @electricshock said in pfSense 2.4.4 (latest) and OpenVPN organisation:

    certificate verify failed

    About the video : have a look at the official "Netgate" videos