OpenVPN does not work on bridged PFsense router
-
@JonathanLee
If the client config file only has an IPv4 remote line, it would use it, but not IPv6.I guess, he has an host name in the remote line and the internal DNS resolves it to IPv6.
-
-
@viragomann He could create a host override for it right?
-
@george1116 is your wan have ipv6 listed under status in pfsense?
I am thinking set that to ipv4 only and test again
-
@JonathanLee said in OpenVPN does not work on bridged PFsense router:
@viragomann He could create a host override for it right?
I guess, his DNS resolves the host to an IPv6 as mentioned. Presumably due to DHCPv6 DNS registration.
I don't think that a host override would be a solution here. -
@viragomann I wonder if his WAN IP he is connecting to is IPV4, I wonder if that interface shows IPV4 only he said he has a router before pfSense and not pfSense first, so I think pfSense is getting ipv4 only on the wan interface
-
After changing it back this is all I get.
@JonathanLee You mean it shows IPV4 but it really isn't?
-
@george1116 did you use the Wizard or manually set up OpenVPN in pfsense?
-
@JonathanLee I used the wizard
-
@george1116
My suggestion was to edit the client config and replace the host name with the respective IPv4 for testing. -
@viragomann Yeah, I tried that already, it doesn't work.
The highlight for me is that it works on Mobile networks, but doesn't work a the Home Router. Is this supposed to be a ISP issue or pfsense?
-
@george1116
So the server log, you've posted above shows IPv6 connection attempts. With an IPv4 only in the config, the client can only use v4. So I'm wondering, what the server log shows then. -
@george1116 said in OpenVPN does not work on bridged PFsense router:
The highlight for me is that it works on Mobile networks, but doesn't work a the Home Router
Over the internet to the WAN IP?
Which IP version does it use in this case?
-
Not quite.
When it showed the IPV6 connection we had indeed changed it to useUDP IPV4 and IPV6. But once I have changed it back toUDP IPV4it's only connecting via IPV4Over the internet to the WAN IP? Which IP version does it use in this case?In this case it uses IPV4
-
@george1116 On your firewall does WAN interface status show only IPV4??
-
@JonathanLee Yes, before we changed it it showed only IPV4, after we changed it I added IPV6 manually, but I have since returned to IPV4.
-
@george1116 under pfsense go to status and wan interface does that show a ipv4 address only? If so set that in the config file where f.q.d.n is
-
@JonathanLee Yeah, I did exactly that already. It didn't work sadly.
-
@george1116 On pfSense under Status ---> system logs ----> tab OpenVPN what is showing for errors?
-
@george1116 Can you access syslogs on your router in front of pfsense??
It looks like a certificate issues but you said it works. You said also it works without the pfSense firewall (hence you removed the firewall it to test VPN with only router and device you want to connect to) so I am thinking the certificate was generated without pfSense, thus you imported that certificate into pfSense right?
Regenerate the certificates or import the correct one into pfSense. You have some cert mix up here and it won't authenticate to it.
This is the area with the mix up you need the correct TLS certificate TLS Key has an issue.
