Latest snapshot 12-11 and OpenVPN server



  • The author of pfSense's freeradius has responded with:

    Apparently, that error is triggered when the client is down, not the server. It makes sense.

    Please take this to the forum to continue the conversation.  Fernando is not subscribed here.

    Hi !

    I'm running the latest snapshot 12-11 and have a running OpenVPN
    Client. It connects without problems to a pfsense runnning release 1.0.

    On this box we're not able to run the latest releases, because OpenVPN
    server does not run properly using PSK. The server exits after some
    time and never comes back until reboot. This box is 350 km away… so
    i tested OpenVPN server on my own box here and:

    Client to the other box works well, but i'm not able to connect to my
    box with OpenVPN using Certificates, which worked with release 1.0 and 1.0.1.

    In the OpenVPN Logs i get NO entry at all, but I added a firewallrule
    from WAN-Interface to 1194 UDP.

    In the Client GUI I get:

    Tue Dec 12 16:51:04 2006 TLS Error: TLS key negotiation failed to
    occur within 60 seconds (check your network connectivity)

    Tue Dec 12 16:51:04 2006 TLS Error: TLS handshake failed

    Tue Dec 12 16:51:04 2006 TCP/UDP: Closing socket

    Tue Dec 12 16:51:04 2006 SIGUSR1[soft,tls-error] received, process
    restarting

    Tue Dec 12 16:51:04 2006 Restart pause, 2 second(s)

    Tue Dec 12 16:51:06 2006 Re-using SSL/TLS context

    Tue Dec 12 16:51:06 2006 LZO compression initialized

    Tue Dec 12 16:51:06 2006 Control Channel MTU parms [ L:1542 D:138
    EF:38 EB:0 ET:0 EL:0 ]

    Tue Dec 12 16:51:06 2006 Data Channel MTU parms [ L:1542 D:1450 EF:42
    EB:135 ET:0 EL:0 AF:3/1 ]

    Tue Dec 12 16:51:06 2006 Local Options hash (VER=V4): '41690919'

    Tue Dec 12 16:51:06 2006 Expected Remote Options hash (VER=V4): '530fdded'

    Tue Dec 12 16:51:06 2006 UDPv4 link local: [undef]

    Tue Dec 12 16:51:06 2006 UDPv4 link remote: 82.83.81.xxx:1194

    Does anyone got it running ? Or any hints for me where to look for
    some more Information on the box itself ?

    When degrading the firmware to release 1.0 or 1.0.1 it works again.

    Seems to me as if this would have something to do with the BSD 6.2
    upgrade since the snapshots ?

    Might that be ?

    Regards,

    Martin


Locked