Setup remote access: remote host not accessible



  • Hi,
    my colleague is pulling out her hair. I took a look into her openVPN configuration. It looks reasonable.

    She were trying to setup openVPN on remote pfsense so we can access remote hosts by using openVPN. Unfortunatelly we cannot access remote host (ping failed). So what could be wrong?

    This is our current setup:

    General information

    Disable this server: not ticked
    Server Mode: Remote Access (SSL/TLS + User Auth)
    Backend for authentication: Local Database
    Protocol: UDP
    Device Mode: tun
    Interface: WAN
    Local Port: 1194
    Description: vvVPN
    

    Cryptographic Settings

    I think the settings are fine here.
    

    Tunnel Settings

    Tunnel Network: 10.0.8.0/24
    Redirect Gateway: not ticked
    Local Network: 192.168.101.0/24
    Concurrent connections: 2
    Compression: ticked
    Type-of-Service: not ticked
    Inter-client communication: not ticked	
    Duplicate Connections: not ticked
    

    Client Settings

    Dynamic IP: ticked
    Address Pool: ticked
    DNS Default Domain: not ticked
    DNS Servers: not ticked
    NTP Servers: not ticked
    NetBIOS Options: not ticked
    

    Advanced configuration

    Advanced: [empty]
    

    We tried to ping remote host 192.168.101.11 but it failed.

    There are a firewall rule for openVPN in tab "openVPN" (created by openVPN Wizard) which allows everythin from everywhere to everywhere.

    So, what could be wrong?

    cu Floh



  • Couple things:

    • In the Cryptographic Settings section, make sure you have a Peer Certificate Revocation List listed

    • If the remote host has a software firewall enabled, make sure it is configured to respond to icmp

    • What is the IP of the machine you are coming from?  Make sure it's not on the 192.168.101.0/24 network


Locked