Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Connection to OpenVPN successful but unable to access local resources

    Scheduled Pinned Locked Moved OpenVPN
    4 Posts 2 Posters 6.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      gg93
      last edited by

      Hi All,

      Having a bit of an issue, had the OpenVPN service running smoothly for about 5 clients for 6 months.
      Suddenly, I'm unable to access any local resources when connected on my laptop at home. I've also attempted to connect when tethered to my phone to ensure it wasn't just my home network.

      I can connect to the VPN, and when i check on the firewall, there appears to be packets recieved, but when i try to remote onto a server, or open emails, no luck!

      When connecting, i get the following messages:

      On the OpenVPN client: I've masked the external IP as ... for security

      Mon Jun 09 22:28:49 2014 OpenVPN 2.3.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Apr  9 2014
      Mon Jun 09 22:28:50 2014 Control Channel Authentication: using 'pfsense-udp-1194-ggcert-tls.key' as a OpenVPN static key file
      Mon Jun 09 22:28:50 2014 UDPv4 link local (bound): [undef]
      Mon Jun 09 22:28:50 2014 UDPv4 link remote: [AF_INET]**.***.***.**:1194
      Mon Jun 09 22:28:57 2014 [ServerCert] Peer Connection Initiated with [AF_INET]**.***.***.**:1194
      Mon Jun 09 22:28:59 2014 OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options
      Mon Jun 09 22:28:59 2014 OpenVPN ROUTE: failed to parse/resolve route for host/network: 172.18.200.0
      Mon Jun 09 22:28:59 2014 open_tun, tt->ipv6=0
      Mon Jun 09 22:28:59 2014 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{010D02F6-3E97-4A0B-80F2-B92C618432E5}.tap
      Mon Jun 09 22:28:59 2014 Successful ARP Flush on interface [19] {010D02F6-3E97-4A0B-80F2-B92C618432E5}
      Mon Jun 09 22:29:04 2014 Initialization Sequence Completed
      

      Server OpenVPN log:

      Jun 9 21:28:57	openvpn[14733]: 176.26.7.52:60993 [ggcert] Peer Connection Initiated with [AF_INET]176.26.7.52:60993
      Jun 9 21:28:57	openvpn[14733]: MULTI: no dynamic or static remote --ifconfig address is available for ggcert/176.26.7.52:60993
      Jun 9 21:28:59	openvpn[14733]: ggcert/176.26.7.52:60993 send_push_reply(): safe_cap=940
      

      Does anyone have any ideas? I previously worked, stopped all of a sudden.
      The VPN is running in bridge mode.

      Let me know if you need any more information.

      Thanks,

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        tun mode or tap mode?
        What is your tunnel network? "remote networks"? Any client-specific overrides?

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • G
          gg93
          last edited by

          Hi Jimp,

          Many thanks for the reply.

          I'm running it in TAP mode and i have no Client Specific Overrides.
          I'm running in bridge mode with Lan being the bridge interface and the local network being 172.18.200.0/24 which is our local network in the business.

          Thanks,

          GG93

          1 Reply Last reply Reply Quote 0
          • G
            gg93
            last edited by

            FIXED

            I went into the VPN interface, clicked 'Save' and all miraculously started working again.
            got the idea from another Thread: https://forum.pfsense.org/index.php?topic=75142.0

            Same problem too (vpn tap with certificate + bridge)

            The vpn connects correctly (from logs either client and server side), but no traffic passes through it as interface is down.
            Going to the interface properties hitting save makes it work

            The problem doesn't happen with vpn tun with shared key to another location

            Thanks for the help though!

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.