Unable to establish an OpenVPN connection (bug?)
-
I had 2 OpenVPN servers up and running for a couple of years. I created a new OpenVPN server and for the first time I tried to assign its interface as an OPT interface. However, this configuration did not work: no errors were reported, but the connection between the OpenVPN client and server did not take place ("TLS key negotiation failed to occur within 60 seconds").
At the end of the story I found that, for some reason, after assigning an OpenVPN server interface as an OPT interface the servers stop responding to the configured NIC. To solve the problem it is necessary to go into the settings of each server (VPN > OpenVPN > Servers), set a different NIC in "Endpoint Configuration | Interface" (e.g. "Any") and then re-set the correct NIC (typically "WAN").
-
Your OpenVPN should be listing on a WAN type interface.
To be more precise : on the interface where the OpenVPN client connections comes in.Why should this be a OPT interface ?
if the OPTx is also a WAN type interface, then ok.@trigg3r said in Unable to establish an OpenVPN connection (bug?):
after assigning an OpenVPN server interface as an OPT interface the servers
Why would you want do that ?
-
Your OpenVPN should be listing on a WAN type interface.
So it is ... but after a few hours I discovered that pfsense had lost this setting. Set it to "Any", set it back to "WAN" and the problem was solved.
Why would you want do that ?
Virtual Private Networks — OpenVPN — Assigning OpenVPN Interfaces | pfSense Documentation