Some users are unable to connect OpenVPN



  • Hi all,

    I have successfully configured OpenVPN on pfSense 2.0.1 x64, some users mobile are unable to connect,
    After clicking Connect button, I saw the log file as below,
    Enter Management Password:
    Signal received from management interface, existing.

    and the software is still in hang til clicking Exit button,

    my .ovpn file:

    dev tun
    persist-tun
    persist-key
    proto udp
    cipher AES-128-CBC
    tls-client
    client
    resolv-retry infinite
    remote xxx.xxx.xxx.xxx 1194
    tls-remote ILz_SerCert
    auth-user-pass login.txt
    ca fw0-udp-1194-ca.crt

    please any helps,

    thanks,
    lucky,



  • is udp port 1194 outbound open at the client side?



  • @Dennis:

    is udp port 1194 outbound open at the client side?

    yes, the port is opened, i mean some computers are unable to connect without any error output.



  • The clients will output something if they fail to connect. What exactly that is will help determine why. With the info provided, there's no telling what it might be.



  • Remember when using a Windows 7 or Vista box make sure that you right-click and run the openvpn client as administrator. If you don't do this it will remain yellow and never connect.



  • Some internal IT politics do not allow users to have admin rights.
    OpenVPN needs them to add routes in Windows 7 (doesn't related to Win XP) or Vista, I think.

    Some guy writed to me from Italy, they have to:

    • open 1194 udp port in their main company firewall,
    • add .BAT script manual adding routes (as temporary) since user do not have admin rights on his laptop.
      Then it worked.

    Some public internet access sites, like airports also do not allow VPN traffic. Then You have to use port forwarding instead.

    Remember, You are not limited to single VPN solution.
    If You have for example Windows 2008 Server You can use it's internal PPTP VPN solution also with pfSense and both will work.


Locked