OpenVPN only works for couple days …
-
Hi All,
I have OpenVPN server configured on a PFsense 2.0
My RoadWarriors could connect and all is fine.. for a while…After a couple days/weeks (maybe a power outage?) things stop working.
I can still connect ...
(from todays log)
trmVPN UDP:1194 Client connections
Common Name Real Address Virtual Address Connected Since Bytes Sent Bytes Received
peter 1xxxx:10089 10.20.20.6 Mon Dec 12 10:35:13 2011 18419 18454But that's it, I am not seeing anything beyond this point.
Not able to connect to the fileserver that sits behind the pfSense...Cannot ping the pfSense box - or any other server behind the firewall... from the client
The firewall rule " allow all " inserted by the OpenVPN wizard is still there ...
A pfSense reboot does not help.
Turning the OpenVPN server off/on does not help.
dis/enable the "allow all" rule does not help.I can connect - so it is not a certificate expiry issue...
On the client I see
Destination Gateway Genmask Flags Metric Ref Use Iface
10.20.20.1 10.20.20.5 255.255.255.255 UGH 0 0 0 tun0
10.20.20.5 * 255.255.255.255 UH 0 0 0 tun0
192.168.20.0 10.20.20.5 255.255.255.0 UG 0 0 0 tun0But again I cannot pint anything in 192.168.20.0/24 were I could ping everything couple days ago.
So something is tampering this OpenVPN setup. (A reboot?)
Last time I deleted everything from the pfSense - re-did certificates, OpenVPN server, redistributed keys to clients and all was good... for couple weeks...What the heck is going on?
Where do I start looking for things?Thanks
Peter
-
How stupid is this one…
One of the unused NICs had the same CIDR/24 as the tunnel network...
Changed the tunnel network and all is fine...
Still weird that this worked for a few days/weeks ...
Anyway solved it leave it here for others to find...
Damn'it
Peter
-
I love this kind of errors ;D