OpenVPN // PfSense // Windows // Linux

pfn00b · Aug 1, 2009, 11:04 PM

I have been struggling with this for a while now.
I know how to make certificates, and I know how to make OpenVPN servers on the PfSense webgui.

I just can't seem to figure out why my connections are not working…

Could someone give the the exact settings used on the pfsense firewall and OpenVPN on windows/linux?

What I am trying to do is set up an OpenVPN server on a linux machine, in which a windows and/or linux machine will connect
to via OpenVPN.

I have read many tutorials, and none of their configurations seem to work...

fastcon68 · Aug 2, 2009, 1:21 AM

The openvpn topic OpenVPN on pfSense - Installation guide for (Windows) Dummies :-) (road-warrior) is the way to go. I followed it step by step and got mine up and running.
RC

AhnHEL · Aug 2, 2009, 1:23 AM

One thing that stumped me for a while with running OVPN on Linux was the fact that I had to type the full path to the certificates in my conf file. This wasnt necessary in windows if the conf file was in the same location as the certificates but in Linux the full path needs to be entered regardless of where the conf and certificates are stored.

pfn00b · Aug 2, 2009, 7:00 PM

So I tried that tutorial exaclty word-for-word…and I am still getting no connection.

However, in the pfsense OpenVPN logs I am getting this:

Aug 2 12:44:37 openvpn[40270]: event_wait : Interrupted system call (code=4)
Aug 2 12:44:37 openvpn[40270]: /etc/rc.filter_configure tun0 1500 1558 10.0.1.1 10.0.1.2 init
Aug 2 12:44:37 openvpn[40270]: SIGTERM[hard,] received, process exiting
Aug 2 12:44:39 openvpn[41321]: OpenVPN 2.0.6 i386-portbld-freebsd7.1 [SSL] [LZO] built on Apr 22 2009
Aug 2 12:44:39 openvpn[41321]: WARNING: file '/var/etc/openvpn_server0.key' is group or others accessible
Aug 2 12:44:39 openvpn[41321]: gw 166.70.0.1
Aug 2 12:44:39 openvpn[41321]: TUN/TAP device /dev/tun0 opened
Aug 2 12:44:39 openvpn[41321]: /sbin/ifconfig tun0 10.0.1.1 10.0.1.2 mtu 1500 netmask 255.255.255.255 up
Aug 2 12:44:39 openvpn[41321]: /etc/rc.filter_configure tun0 1500 1558 10.0.1.1 10.0.1.2 init
Aug 2 12:44:41 openvpn[41355]: UDPv4 link local (bound): [undef]:1194
Aug 2 12:44:41 openvpn[41355]: UDPv4 link remote: [undef]
Aug 2 12:44:41 openvpn[41355]: Initialization Sequence Completed

I dont' know if this is a good or bad thing.

Could someone explain what is going on?

Also, "gw 166.70.0.1" seems odd, for the machine that pfsense is on has a gateway of 166.70.102.209.
Could this be a problem too? If so, how might I fix this?

fastcon68 · Aug 3, 2009, 4:22 AM

What is your IP and gateway for you external network, that is what it should be. This is a example of the client configuration:

ovpn_client.txt

dev tun
proto udp
remote 63.162.xxx.xxx 1194
ping 10
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert ovpn_client1.crt
key ovpn_client1.key
ns-cert-type server
comp-lzo
pull
verb 3

This from my workstation that I use to connect openvpn with.
RC