OpenVPN Remote Access Route Problem
-
I am working on a 2.0-RELEASE router setting up OpenVPN Remote Access. The setup is all correct but now when it creates the local routes on the pfsense box it creates them wrong:
An existing OpenVPN Server:
10.10.50.1 link#23 UHS 0 0 16384 lo0
10.10.50.2 link#23 UH 0 819 1500 ovpns7New OpenVPN Server:
10.19.0.1 link#25 UHS 0 0 16384 lo0 =>
10.19.0.1/32 link#25 U 0 0 1500 ovpns8The the remote access clients can not pass traffic because the ip on the pfsense side is "10.19.0.1/32". Has anyone come across this before? Is there some setting I'm doing wrong?
OpenVPN Server Config:
Remote Access (User Auth)
Protocol: UDP
Device Mode: tun
TLS Auth: off
Tunnel Network: 10.19.0.0/24
Local Network: 192.168.19.0/24
Compression: on
Type-of-Service: off
Inter-Client: off
Dynamic IP: on (tried with off as well)
Address Pool: on
DNS Default Domain: escrow.local
DNS Servers: 192.168.19.1Log output (reverse order):
Jun 28 12:52:18 openvpn[63383]: UDPv4 link local (bound): [AF_INET]108.52.126.50:1195
Jun 28 12:52:18 openvpn[62078]: ERROR: FreeBSD route add command failed: external program exited with error status: 1
Jun 28 12:52:18 openvpn[62078]: /usr/local/sbin/ovpn-linkup ovpns8 1500 1558 10.19.0.1 10.19.0.2 init
Jun 28 12:52:18 openvpn[62078]: /sbin/ifconfig ovpns8 10.19.0.1 10.19.0.2 mtu 1500 netmask 255.255.255.255 up
Jun 28 12:52:18 openvpn[62078]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Jun 28 12:52:18 openvpn[62078]: TUN/TAP device /dev/tun8 opened -
What does the server say?
-
Everything there is from the server side. The client side shows no differences and I am 100% certain that the bad route is the issue.
-
It didn't finish establishing the connection. I'd need to see more if you still haven't fixed the solution, you can always contact me.
Cheers.
-Percy