IPredator config won't work.



  • Dear users of the forum.

    So i have an VPN service from IPredator that uses this config:

    
    client
    dev tun0
    proto udp
    remote pw.openvpn.ipredator.se 1194
    remote pw.openvpn.ipredator.me 1194
    remote pw.openvpn.ipredator.es 1194
    resolv-retry infinite
    nobind
    
    auth-user-pass /etc/openvpn/IPredator.auth
    auth-retry nointeract
    
    ca [inline]
    
    tls-client
    tls-auth [inline]
    ns-cert-type server
    
    keepalive 10 30
    cipher AES-256-CBC
    persist-key
    persist-tun
    comp-lzo
    tun-mtu 1500
    mssfix
    passtos
    verb 3
    
     <ca>-----BEGIN CERTIFICATE-----
    MIIFJzCCBA+gAwIBAgIJAKee4ZMMpvhzMA0GCSqGSIb3DQEBBQUAMIG9MQswCQYD
    VQQGEwJTRTESMBAGA1UECBMJQnJ5Z2dsYW5kMQ8wDQYDVQQHEwZPZWxkYWwxJDAi
    BgNVBAoTG1JveWFsIFN3ZWRpc2ggQmVlciBTcXVhZHJvbjESMBAGA1UECxMJSW50
    ZXJuZXR6MScwJQYDVQQDEx5Sb3lhbCBTd2VkaXNoIEJlZXIgU3F1YWRyb24gQ0Ex
    JjAkBgkqhkiG9w0BCQEWF2hvc3RtYXN0ZXJAaXByZWRhdG9yLnNlMB4XDTEyMDgw
    NDIxMTAyNVoXDTIyMDgwMjIxMTAyNVowgb0xCzAJBgNVBAYTAlNFMRIwEAYDVQQI
    EwlCcnlnZ2xhbmQxDzANBgNVBAcTBk9lbGRhbDEkMCIGA1UEChMbUm95YWwgU3dl
    ZGlzaCBCZWVyIFNxdWFkcm9uMRIwEAYDVQQLEwlJbnRlcm5ldHoxJzAlBgNVBAMT
    HlJveWFsIFN3ZWRpc2ggQmVlciBTcXVhZHJvbiBDQTEmMCQGCSqGSIb3DQEJARYX
    aG9zdG1hc3RlckBpcHJlZGF0b3Iuc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw
    ggEKAoIBAQCp5M22fZtwtIh6Mu9IwC3N2tEFqyNTEP1YyXasjf+7VNISqSpFy+tf
    DsHAkiE9Wbv8KFM9bOoVK1JjdDsetxArm/RNsUWm/SNyVbmY+5ezX/n95S7gQdMi
    bA74/ID2+KsCXUY+HNNUQqFpyK67S09A6r0ZwPNUDbLgGnmCZRMDBPCHCbiK6e68
    d75v6f/0nY4AyAAAyqwAELIAn6sy4rzoPbalxcO33eW0fUG/ir41qqo8BQrWKyEd
    Q9gy8tGEqbLQ+B30bhIvBh10YtWq6fgFZJzWP6K8bBJGRvioFOyQHCaVH98UjwOm
    /AqMTg7LwNrpRJGcKLHzUf3gNSHQGHfzAgMBAAGjggEmMIIBIjAdBgNVHQ4EFgQU
    pRqJxaYdvv3XGEECUqj7DJJ8ptswgfIGA1UdIwSB6jCB54AUpRqJxaYdvv3XGEEC
    Uqj7DJJ8ptuhgcOkgcAwgb0xCzAJBgNVBAYTAlNFMRIwEAYDVQQIEwlCcnlnZ2xh
    bmQxDzANBgNVBAcTBk9lbGRhbDEkMCIGA1UEChMbUm95YWwgU3dlZGlzaCBCZWVy
    IFNxdWFkcm9uMRIwEAYDVQQLEwlJbnRlcm5ldHoxJzAlBgNVBAMTHlJveWFsIFN3
    ZWRpc2ggQmVlciBTcXVhZHJvbiBDQTEmMCQGCSqGSIb3DQEJARYXaG9zdG1hc3Rl
    ckBpcHJlZGF0b3Iuc2WCCQCnnuGTDKb4czAMBgNVHRMEBTADAQH/MA0GCSqGSIb3
    DQEBBQUAA4IBAQB8nxZJaTvMMoSG47jD2w31zt9o6nSx8XJKop/0rMMHKBe1QBUw
    /n3clGwYxBW8mTnrXHhmJkwJzA0Vh525+dkF28E0I+DSigKUXEewIZtKjADYSxaG
    M+4272enbJ86JeXUhN8oF9TT+LKgMBgtt9yX5o63Ek6QOKwovH5kemDOVJmwae9p
    tXQEWfCPDFMc7VfSxS4BDBVinRWeMWZs+2AWeWu2CMsjcx7+B+kPbBCzfANanFDD
    CZEQON4pEpfK2XErhOudKEJGCl7psH+9Ex//pqsUS43nVN/4sqydiwbi+wQuUI3P
    BYtvqPnWdjIdf2ayAQQCWliAx9+P03vbef6y
    -----END CERTIFICATE-----</ca> 
    
     <tls-auth>-----BEGIN OpenVPN Static key V1-----
    03f7b2056b9dc67aa79c59852cb6b35a
    a3a15c0ca685ca76890bbb169e298837
    2bdc904116f5b66d8f7b3ea6a5ff05cb
    fc4f4889d702d394710e48164b28094f
    a0e1c7888d471da39918d747ca4bbc2f
    285f676763b5b8bee9bc08e4b5a69315
    d2ff6b9f4b38e6e2e8bcd05c8ac33c5c
    56c4c44dbca35041b67e2374788f8977
    7ad4ab8e06cd59e7164200dfbadb942a
    351a4171ab212c23bee1920120f81205
    efabaa5e34619f13adbe58b6c83536d3
    0d34e6466feabdd0e63b39ad9bb1116b
    37fafb95759ab9a15572842f70e7cba9
    69700972a01b21229eba487745c091dd
    5cd6d77bdc7a54a756ffe440789fd39e
    97aa9abe2749732b7262f82e4097bee3
    -----END OpenVPN Static key V1-----</tls-auth> 
    
    

    Well the problem is that there is no way to only use TLS and CA, i have gotten it to work via editing the config file in /var/etc/openvpn and then starting the service but on the webinterface itself it's not way to use that config.

    Config:
    http://i.imgur.com/3ZSKKA7.png
    Error log
    http://i.imgur.com/2WqdI3o.png



  • Does anyone know this?
    Client Certificate: http://i.imgur.com/dDoaS4C.png Data: http://pastebin.com/QSVw31yp

    Peer Certificate Authority: http://i.imgur.com/V1tB8Ta.png Data: http://pastebin.com/QSVw31yp



  • To get rid of the error message put ";ns-cert-type server" in the advanced settings of the openvpn setup. However, I don't think it will cause the vpn not to connect.

    I am also having problems getting Ipredator to work, I can connect but not recieve an ip address from the server but pfsense shows the vpn up.

    If you got it working I could use some help.

    Thanks



  • If you can try and contact support or post on IPredator VPN forums (if they got it) and ask for help in setting up your pfsense you may get better answers same applies for any VPN provider….

    Sadly the support for pfsense is hit and miss regarding VPN providers out there, some have tried settings from other guides.

    I googled blackvpn pfsense guide, also tried the guides posted and stickied above here:

    https://www.blackvpn.com/support/pfsense-with-openvpn/

    https://forum.pfsense.org/index.php/topic,29944.0.html

    https://forum.pfsense.org/index.php/topic,57180.0.html

    You maybe able to merge some parts of those guides to work with Ipredator vpn and other vpn providers and get it too work.

    I found it very tricky, and gave up....

    I also find the pfsense guides posted around to not work fully or only half. If you can find someone however who understand pfsense and has the same vpn provider as yourself maybe they willing to help !



  • I was unable to get Ipredator to work but I got a Blackvpn account and it fired right up. Last night one of the top support guys at Ipredator was going to set it up in a VM and see if he could figure it out but I haven't spoke with him since. If he gets it I will post here.

    Blackvpn uses just the CA and Private Key also. If you want to see Blackvpn config let me know.

    They have the instructions for Pfsense setup right on their site.

    Could it be 32 vs 64 bit?

    Regards,

    Jeff



  • Yeah this is what I was saying earlier its hit and miss with VPN support + pfsense…. seems one has to figure out the settings. Strangely its not that much settings its the other pfsense configuration which I found tricky...

    The easy option is of course to join black vpn or a provider that supports pfsense support in general.