OpenVPN disconnection problems



  • Hi Y'all,

    I have a problem that I don't think exactly would be classified as a bug, but I'm more hoping to learn how OpenVPN behaves under pfSense 2.0 in regard to my issue…

    When I connect to the pfSense OpenVPN server from my house, the connection is live for exactly 60 seconds before going dead.  Then after 60 more seconds, my OpenVPN client (tunnelblick, for OSX) restarts the connection, and it is live for exactly 60 seconds before dying again, ad infinitum.

    There are others out there who can
    connect to this same VPN server with tunnelblick as well with no
    problems (same version and OS), the connection is stable.

    I ruled out my wireless router by connecting directly to the DSL
    modem, same thing happens there, so that rules out a problem with the
    wireless router.

    It is interesting to note that when I connect, the connection is live
    for almost exactly 60 seconds, then the connection drops.  60 seconds
    after that, tunnleblick notices the connection has dropped and
    restarts, after which I have 60 seconds of 'live' uptime before the
    connection drops again, and the cycle continues.  So, I don't think it
    is tunnelblick's fault exactly, because my connection drops long
    before tunnelblick notices and restarts it.  But it is VERY odd that
    my connection is live for exactly 60 seconds before dropping.  At the
    moment the connection goes dead, nothing is logged in the tunnelblick
    logs, so tunnelblick definitely doesn't notice it.  If my DSL
    connection was flaky I could believe there would be problems since I'm
    using UDP to the OpenVPN server, but I don't think that's it, since I
    see the connection drop after 60 seconds exactly, it is the same every
    time.

    I guess I need to try this at some other location, like a neighbor's
    house that uses a different ISP or something.  I called my ISP (a
    local mom-and-pop ISP)  and they had no idea what I was talking about
    (not surprising).  But the precise regularity at which the connection
    drops (60 seconds exactly) makes me think there is some problem with
    the router at the ISP.  I don't know yet for sure.

    All I know is that it was working a week ago and now it's not.  I feel
    like I'm searching for a needle in a haystack.  ;)

    But, I was just wondering, is there anything in the pfSense OpenVPN implementation that would trigger the server to terminate the connection after exactly one minute?



  • BTW - I have a static IP on my DSL line, so there is no DHCP in the mix, even from the wireless router.  This weirdness happens when I statically configure the IP of my laptop (or any laptop, I've tried a few).  I've also statically configured my laptop's IP and plugged it directly into the modem just to rule out any issues with DHCP from the wireless router.


  • Rebel Alliance Developer Netgate

    By chance do you have two VPN sessions open with the same username/password/certificate?

    It sounds like two clients fighting over the same session; You connect and the other gets bumped. 60 seconds later the other realizes the connection dies and reconnects, bumping you off. Repeat over and over…



  • Bingo!  That was the problem.  I forgot I left my desktop at work connected to it for the past 5 days.  That would explain my laptop freaking out from home.  I confirmed that was the issue.  Thanks a million!


  • Rebel Alliance Developer Netgate

    Glad it was an easy fix…

    FYI, if you want to allow the duplicate connections, you can add in the custom options box "duplicate-cn;" and it should let both on.

    EDIT: I just added a checkbox to the openvpn server page to set duplicate-cn, should be in the next new snapshot.


Locked