Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Client connection port does not match in dashboard

    OpenVPN
    5
    6
    62
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      gordon_cents last edited by

      VPN-PhoneConnection.png

      Why would I see the server using port 1195 with a client who is and does (or seems to) connect on port 1195 show as port 1194?

      Client Config -

      dev tap
      persist-tun
      persist-key
      cipher AES-128-CBC
      auth SHA1
      tls-client
      client
      resolv-retry infinite
      remote 104.224.54.101 1195 udp
      ca /config/openvpn/keys/ca.crt
      cert /config/openvpn/keys/client1.crt
      key /config/openvpn/keys/client1.key
      tls-auth /config/openvpn/keys/ta.key 1
      remote-cert-tls server

      pfSense - 2.4.4-RELEASE-p3 (amd64)

      Thanks!

      1 Reply Last reply Reply Quote 0
      • Rico
        Rico LAYER 8 Rebel Alliance last edited by

        The widget is showing the Client Source IP and Source Port.

        -Rico

        2x Netgate XG-7100 | 11x Netgate SG-5100 | 6x Netgate SG-3100 | 2x Netgate SG-1100

        T 1 Reply Last reply Reply Quote 1
        • T
          tunge2 @Rico last edited by

          @Rico is there a way to send the dashboard info to the syslog from pfsense?

          1 Reply Last reply Reply Quote 0
          • Rico
            Rico LAYER 8 Rebel Alliance last edited by

            The same Info is in Status > System Logs > OpenVPN

            Mar 23 13:47:19 	openvpn 	62926 	185.xxx.xxx.xxx:1194 [user] Peer Connection Initiated with [AF_INET]185.xxx.xxx.xxx:1194
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_GUI_VER=OpenVPN_GUI_11
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_TCPNL=1
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_COMP_STUBv2=1
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_COMP_STUB=1
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_LZO=1
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_LZ4v2=1
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_LZ4=1
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_PROTO=2
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_PLAT=win
Mar 23 13:47:18 	openvpn 	62926 	185.xxx.xxx.xxx:1194 peer info: IV_VER=2.4.8

            The Dashboard widget is showing 185.xxx.xxx.xxx:1194 for this User.

            -Rico

            2x Netgate XG-7100 | 11x Netgate SG-5100 | 6x Netgate SG-3100 | 2x Netgate SG-1100

            1 Reply Last reply Reply Quote 0
            • johnpoz
              johnpoz LAYER 8 Global Moderator last edited by johnpoz

              huh? The connection from the client will be in the log already..

              log.jpg

              I think your confused with what port your listening on, 1195 and what port the client is using to connect to that port from, ie the source port... See my client is using port 61015 to connect to port 1194..

              An intelligent man is sometimes forced to be drunk to spend time with his fools
              Please don't Chat/PM me for help, unless mod related
              Read https://www.netgate.com/docs/pfsense/book/
              SG-2440 2.4.5p1 | 4x SG-3100 2.4.4p3 | SG-4860 21.05

              1 Reply Last reply Reply Quote 0
              • Gertjan
                Gertjan last edited by

                .... and when starting OpenVPN server, you can see it's binding to the incoming port :

                ef73a74d-f1b3-419f-8c51-f78a7a21bd73-image.png

                which matches :

                76d6db6f-1e65-417d-9012-2e10c82c220c-image.png

                No "help me" PM's please. Use the forum.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post

                Products

                • Platform Overview
                • TNSR
                • pfSense
                • Appliances

                Services

                • Training
                • Professional Services

                Support

                • Subscription Plans
                • Contact Support
                • Product Lifecycle
                • Documentation

                News

                • Media Coverage
                • Press
                • Events

                Resources

                • Blog
                • FAQ
                • Find a Partner
                • Resource Library
                • Security Information

                Company

                • About Us
                • Careers
                • Partners
                • Contact Us
                • Legal
                Our Mission

                We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

                Subscribe to our Newsletter

                Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

                © 2021 Rubicon Communications, LLC | Privacy Policy