Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenVPN Client Peer To Peer Shared Key Error w/RC1

    Scheduled Pinned Locked Moved 2.0-RC Snapshot Feedback and Problems - RETIRED
    10 Posts 3 Posters 7.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • AhnHELA
      AhnHEL
      last edited by

      If I set a unique local port, the tunnel completes with

      Initialization Sequence Completed

      If I place a 0 in local port in order to get a dynamic port, I get the following:

      Feb 14 01:59:29 openvpn[62233]: Use โ€“help for more information.
      Feb 14 01:59:29 openvpn[62233]: Options error: Bad local port number: 0

      This is for the client side of a Site to Site Tunnel/Shared Key on the latest RC1 snap

      2.0-RC1 (amd64)
      built on Sun Feb 13 23:53:14 EST 2011

      AhnHEL (Angel)

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        What if you just leave it blank?

        What does the config file in /etc/openvpn/ look like?

        Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • jimpJ
          jimp Rebel Alliance Developer Netgate
          last edited by

          Actually it looks like we backed down to OpenVPN 2.1.x last week to fix another issue, but that breaks lport 0, since that was added on the -devel branch where we were before. I'll see what we can do.

          Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

          Need help fast? Netgate Global Support!

          Do not Chat/PM for help!

          1 Reply Last reply Reply Quote 0
          • jimpJ
            jimp Rebel Alliance Developer Netgate
            last edited by

            Give one of these a try:

            32-bit (i386)

            pkg_add -r http://cvs.pfsense.org/~jimp/ovpn/32/openvpn-beta-2.2.b5.tbz
            

            64-bit (amd64)

            pkg_add -r http://cvs.pfsense.org/~jimp/ovpn/64/openvpn-beta-2.2.b5.tbz
            

            See if it works with the port blank or set to 0, connects ok, etc.

            Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            1 Reply Last reply Reply Quote 0
            • C
              clarknova
              last edited by

              
              pkg_add -r http://cvs.pfsense.org/~jimp/ovpn/64/openvpn-beta-2.2.b5.tbz
              Fetching http://cvs.pfsense.org/~jimp/ovpn/64/openvpn-beta-2.2.b5.tbz... Done.
              Error: Unable to get http://cvs.pfsense.org/~jimp/ovpn/All/lzo2-2.04.tbz: Not Found
              pkg_add: can't open dependency file '/var/db/pkg/lzo2-2.04/+REQUIRED_BY'!
              dependency registration is incomplete
              
              ### ------------------------------------------------------------------------
              ###ย  Edit /etc/rc.conf[.local] to start OpenVPN automatically at system
              ###ย  startup. See /usr/local/etc/rc.d/openvpn for details.
              ### ------------------------------------------------------------------------
              ###ย  For compatibility notes when interoperating with older OpenVPN
              ###ย  versions, please, see <http: openvpn.net="" relnotes.html="">### ------------------------------------------------------------------------
              ###ย  NOTE THIS IS AN UNSTABLE BETA VERSION UNDER DEVELOPMENT!
              ###ย  It may or may not be suitable for production. Use at your own risk.
              ### ------------------------------------------------------------------------</http:> 
              

              db

              1 Reply Last reply Reply Quote 0
              • jimpJ
                jimp Rebel Alliance Developer Netgate
                last edited by

                Hmm, odd, try doing a pkg_add -r http://cvs.pfsense.org/~jimp/ovpn/64/lzo2-2.04.tbz

                Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

                Need help fast? Netgate Global Support!

                Do not Chat/PM for help!

                1 Reply Last reply Reply Quote 0
                • C
                  clarknova
                  last edited by

                  That worked with a blank port value.

                  db

                  1 Reply Last reply Reply Quote 0
                  • jimpJ
                    jimp Rebel Alliance Developer Netgate
                    last edited by

                    okโ€ฆ I had another report that it didn't work with someone's road warrior vpn server setup, so it may not be a good switch overall.

                    Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

                    Need help fast? Netgate Global Support!

                    Do not Chat/PM for help!

                    1 Reply Last reply Reply Quote 0
                    • jimpJ
                      jimp Rebel Alliance Developer Netgate
                      last edited by

                      Hopefully this should be better on the current snapshot.

                      Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

                      Need help fast? Netgate Global Support!

                      Do not Chat/PM for help!

                      1 Reply Last reply Reply Quote 0
                      • AhnHELA
                        AhnHEL
                        last edited by

                        Yes, working as before, thank you.

                        AhnHEL (Angel)

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.