1. Home
  2. pfSense® Software
  3. OpenVPN
  4. Not connecting through Openvpn

Not connecting through Openvpn

  • M

    hello guys:

    After searching throught the forums and not finding the appropriate fix i was wondering if anyone can tell me why this is failing. I am trying to set up a site to site as per the site to site document.

    i have also bolded 2 lines figuring this is the problem but could not find a fix for it

    ips have been changed.

    client setup of openvpn logs

    Dec 23 05:38:27 openvpn[371]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 192.168.30.1 192.168.30.2', remote='ifconfig 10.190.115.1 10.190.115.2'
    Dec 23 05:38:17 openvpn[371]: Initialization Sequence Completed
    Dec 23 05:38:17 openvpn[371]: Peer Connection Initiated with 10.190.10.77:1194
    Dec 23 05:38:16 openvpn[371]: UDPv4 link remote: [undef]
    Dec 23 05:38:16 openvpn[371]: UDPv4 link local (bound): [undef]:1194
    Dec 23 05:38:15 openvpn[289]: /etc/rc.filter_configure tun0 1500 1544 192.168.30.1 192.168.30.2 init
    Dec 23 05:38:15 openvpn[289]: /sbin/ifconfig tun0 192.168.30.1 192.168.30.2 mtu 1500 netmask 255.255.255.255 up
    Dec 23 05:38:15 openvpn[289]: TUN/TAP device /dev/tun0 opened
    Dec 23 05:38:15 openvpn[289]: gw 10.190.10.30
    Dec 23 05:38:15 openvpn[289]: WARNING: file '/var/etc/openvpn_server0.secret' is group or others accessible
    Dec 23 05:38:15 openvpn[289]: OpenVPN 2.0.6 i386-portbld-freebsd6.1 [SSL] [LZO] built on Apr 6 2006

    server openvpn logs

    Dec 23 05:38:27 openvpn[371]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 192.168.30.1 192.168.30.2', remote='ifconfig 10.190.115.1 10.190.115.2'
    Dec 23 05:38:17 openvpn[371]: Initialization Sequence Completed
    Dec 23 05:38:17 openvpn[371]: Peer Connection Initiated with 10.190.10.77:1194
    Dec 23 05:38:16 openvpn[371]: UDPv4 link remote: [undef]
    Dec 23 05:38:16 openvpn[371]: UDPv4 link local (bound): [undef]:1194
    Dec 23 05:38:15 openvpn[289]: /etc/rc.filter_configure tun0 1500 1544 192.168.30.1 192.168.30.2 init
    Dec 23 05:38:15 openvpn[289]: /sbin/ifconfig tun0 192.168.30.1 192.168.30.2 mtu 1500 netmask 255.255.255.255 up
    Dec 23 05:38:15 openvpn[289]: TUN/TAP device /dev/tun0 opened
    Dec 23 05:38:15 openvpn[289]: gw 10.190.10.30
    Dec 23 05:38:15 openvpn[289]: WARNING: file '/var/etc/openvpn_server0.secret' is group or others accessible
    Dec 23 05:38:15 openvpn[289]: OpenVPN 2.0.6 i386-portbld-freebsd6.1 [SSL] [LZO] built on Apr 6 2006

    thanks any advice will be appreciated

    0
  • J

    Hi all,

    I got the same problem, too.

    The following is the log I copied from server log:

    Jan 19 09:48:58 openvpn[277]: TUN/TAP device /dev/tun0 opened
    Jan 19 09:48:58 openvpn[277]: /sbin/ifconfig tun0 10.0.10.1 10.0.10.2 mtu 1500 netmask 255.255.255.255 up
    Jan 19 09:48:58 openvpn[277]: /etc/rc.filter_configure tun0 1500 1546 10.0.10.1 10.0.10.2 init
    Jan 19 09:49:01 openvpn[377]: Listening for incoming TCP connection on [undef]:1194
    Jan 19 09:49:30 openvpn[377]: TCP connection established with xxx.xxx.xxx.xxx:54900
    Jan 19 09:49:30 openvpn[377]: TCPv4_SERVER link local (bound): [undef]:1194
    Jan 19 09:49:30 openvpn[377]: TCPv4_SERVER link remote: xxx.xxx.xxx.xxx:54900
    Jan 19 09:49:30 openvpn[377]: Peer Connection Initiated with xxx.xxx.xxx.xxx:54900
    Jan 19 09:49:31 openvpn[377]: Initialization Sequence Completed
    Jan 19 09:49:40 openvpn[377]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 10.0.10.1 10.0.10.2', remote='ifconfig 10.0.200.1 10.0.200.2'

    I can ping the the remote lan  (10.0.200.253) from the firewall (10.0.100.254).

    Ping output:

    PING 10.0.200.253 (10.0.200.253) from xxx.xxx.xxx.xxx: 56 data bytes
    64 bytes from 10.0.200.253: icmp_seq=0 ttl=55 time=16.500 ms
    64 bytes from 10.0.200.253: icmp_seq=1 ttl=55 time=13.585 ms
    64 bytes from 10.0.200.253: icmp_seq=2 ttl=55 time=13.761 ms

    –- 10.0.200.253 ping statistics ---
    3 packets transmitted, 3 packets received, 0% packet loss
    round-trip min/avg/max/stddev = 13.585/14.615/16.500/1.335 ms

    However, I can't ping it from my local lan.  I have tried to ping 10.0.200.253 from shell mode in the firewall but failed.  That is really strange.
    How can I solve the problem?  Thanks a lot.

    Regards,
    Jette

    0
  • F

    @moffl:

    Dec 23 05:38:27 openvpn[371]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 192.168.30.1 192.168.30.2', remote='ifconfig 10.190.115.1 10.190.115.2'

    @jette:

    Jan 19 09:49:40    openvpn[377]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 10.0.10.1 10.0.10.2', remote='ifconfig 10.0.200.1 10.0.200.2'

    Your address pool must be the same in both client and server.

    0
  • J

    @fernandotcl:

    @moffl:

    Dec 23 05:38:27 openvpn[371]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 192.168.30.1 192.168.30.2', remote='ifconfig 10.190.115.1 10.190.115.2'

    @jette:

    Jan 19 09:49:40    openvpn[377]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 10.0.10.1 10.0.10.2', remote='ifconfig 10.0.200.1 10.0.200.2'

    Your address pool must be the same in both client and server.

    Thanks a lot for your reply.  The problem is fixed now. 
    But I still have problem in accessing the remote network.  I can ping 10.0.200.253 in the firewall (10.0.100.254) but I can't ping 10.0.200.253 in my lan (10.0.100.0/24).  Is there anything I missed in the setting?  Thanks a lot.

    Regards,
    Jette

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy