4. Client connection port does not match in dashboard

Client connection port does not match in dashboard

  • G

    VPN-PhoneConnection.png

    Why would I see the server using port 1195 with a client who is and does (or seems to) connect on port 1195 show as port 1194?

    Client Config -

    dev tap
    persist-tun
    persist-key
    cipher AES-128-CBC
    auth SHA1
    tls-client
    client
    resolv-retry infinite
    remote 104.224.54.101 1195 udp
    ca /config/openvpn/keys/ca.crt
    cert /config/openvpn/keys/client1.crt
    key /config/openvpn/keys/client1.key
    tls-auth /config/openvpn/keys/ta.key 1
    remote-cert-tls server

    pfSense - 2.4.4-RELEASE-p3 (amd64)

    Thanks!

    0
  • LAYER 8 Rebel Alliance

    The widget is showing the Client Source IP and Source Port.

    -Rico

    1
    T
     1 Reply
  • T

    @Rico is there a way to send the dashboard info to the syslog from pfsense?

    0
  • LAYER 8 Rebel Alliance

    The same Info is in Status > System Logs > OpenVPN

    Mar 23 13:47:19 	openvpn 	62926 	185.xxx.xxx.xxx:1194 [user] Peer Connection Initiated with [AF_INET]185.xxx.xxx.xxx:1194
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_GUI_VER=OpenVPN_GUI_11
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_TCPNL=1
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_COMP_STUBv2=1
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_COMP_STUB=1
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_LZO=1
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_LZ4v2=1
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_LZ4=1
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_PROTO=2
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_PLAT=win
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_VER=2.4.8

    The Dashboard widget is showing 185.xxx.xxx.xxx:1194 for this User.

    -Rico

    0
  • LAYER 8 Global Moderator

    huh? The connection from the client will be in the log already..

    log.jpg

    I think your confused with what port your listening on, 1195 and what port the client is using to connect to that port from, ie the source port... See my client is using port 61015 to connect to port 1194..

    0

  • .... and when starting OpenVPN server, you can see it's binding to the incoming port :

    ef73a74d-f1b3-419f-8c51-f78a7a21bd73-image.png

    which matches :

    76d6db6f-1e65-417d-9012-2e10c82c220c-image.png

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2019 Rubicon Communications, LLC | Privacy Policy