Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenVPN Client (Streisand)

    Scheduled Pinned Locked Moved OpenVPN
    2 Posts 1 Posters 597 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mtharani
      last edited by

      I'm having a really hard time getting pfsense to connect as a client to an OpenVPN server that was setup using Streisand (https://github.com/StreisandEffect/streisand). I have successfully configured pfsense to connect to a couple of mainstream VPN providers (PIA and Windscribe) and I am able to take the ovpn file from Streisand and open it in several VPN applications and connect without issue. But I cannot get pfsense to connect properly. If I configure with "TLS Key Usage Mode" to just authentication, it doesn't connect and the logs are useless. If I set it to "TLS Encryption and Authentication", it connects but I can't connect to anything over the VPN connection. What am I missing?

      Here is the ovpn file I'm working off (redacted, obviously):
      https://0bin.net/paste/YonQ-UaC#pO3iphdKQ7WdorwaZlTGef6AIlMYa89wrLZAiKx5TEv

      Here is the configuration in pfsense. I've also tried having the custom options empty and adding in the following, but it makes no difference:
      persist-key
      persist-tun
      remote-cert-tls server
      verify-x509-name enlist-barely-involve name
      tls-version-min 1.2

      ![0_1599765660305_CleanShot 2020-09-10 at 13.18.01.png]

      And finally, here is the log file.
      https://0bin.net/paste/VRrnzKVI#nzpeDqDzAplJ3KCxV2sR+fKt02bRfoF5BdgUG9e5jnv

      1 Reply Last reply Reply Quote 0
      • M
        mtharani
        last edited by

        My config screenshot didn't work, obviously. Here's a link:
        https://ibb.co/BnW2nWp

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.