Fresh Install 2.2 x64: Openvpn push issue



  • Hey all,

    Banging my head on this one. So when I first upgraded to 2.2 from 2.1.5 my 2 openvpn serves stop working. Tried to debug it a little got nowhere so this morning I did a fresh install. Currently it setup with 2 wans and 1 lan lagg with 2 vlans on it. No limiters, no qos, no fancy firewall rules and no additional packages.

    I fixed my second openvpn for my roadwarrior setup so I know pfsense is pushing routes on 1 openvpn server but I can no longer get push routes to work on the first one.

    It's a Tomato Shibby MIPSR2-123 (Openvpn 2.3.4) router setup as a remote client with client certs and the pfsense is the server with server certs. I get this on the client:

     A bunch of cert verifications...
    
    Jan 28 11:45:35 xxx daemon.notice openvpn[929]: Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
    Jan 28 11:45:35 xxx daemon.notice openvpn[929]: Data Channel Encrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
    Jan 28 11:45:35 xxx daemon.notice openvpn[929]: Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
    Jan 28 11:45:35 xxx daemon.notice openvpn[929]: Data Channel Decrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
    Jan 28 11:45:35 xxx daemon.notice openvpn[929]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
    Jan 28 11:45:35 xxx daemon.notice openvpn[929]: [K-VPN] Peer Connection Initiated with [AF_INET]xxx.xxx.xxx.xxx:11194
    Jan 28 11:45:36 xxx daemon.notice openvpn[929]: Initialization Sequence Completed
    
    

    pfsense

    Jan 28 11:45:35	openvpn[76993]: P-VPN/xxx.xxx.xxx.xxx:39272 MULTI_sva: pool returned IPv4=192.168.99.6, IPv6=(Not enabled)
    Jan 28 11:47:35	openvpn[76993]: P-VPN/xxx.xxx.xxx.xx:39272 [P-VPN] Inactivity timeout (--ping-restart), restarting
    Jan 28 11:49:09	openvpn[76993]: event_wait : Interrupted system call (code=4)
    Jan 28 11:49:09	openvpn[76993]: /usr/local/sbin/ovpn-linkdown ovpns1 1500 1602 192.168.99.1 192.168.99.2 init
    Jan 28 11:49:09	openvpn[76993]: SIGTERM[hard,] received, process exiting
    Jan 28 11:49:09	openvpn[76992]: OpenVPN 2.3.6 amd64-portbld-freebsd10.1 [SSL (OpenSSL)] [LZO] [MH] [IPv6] built on Dec 1 2014
    Jan 28 11:49:09	openvpn[76992]: library versions: OpenSSL 1.0.1k-freebsd 8 Jan 2015, LZO 2.08
    Jan 28 11:49:09	openvpn[77215]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
    Jan 28 11:49:09	openvpn[77215]: Initializing OpenSSL support for engine 'cryptodev'
    Jan 28 11:49:09	openvpn[77215]: Control Channel Authentication: using '/var/etc/openvpn/server1.tls-auth' as a OpenVPN static key file
    Jan 28 11:49:09	openvpn[77215]: TUN/TAP device ovpns1 exists previously, keep at program end
    Jan 28 11:49:09	openvpn[77215]: TUN/TAP device /dev/tun1 opened
    Jan 28 11:49:09	openvpn[77215]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
    Jan 28 11:49:09	openvpn[77215]: /sbin/ifconfig ovpns1 192.168.99.1 192.168.99.2 mtu 1500 netmask 255.255.255.255 up
    Jan 28 11:49:09	openvpn[77215]: /usr/local/sbin/ovpn-linkup ovpns1 1500 1602 192.168.99.1 192.168.99.2 init
    Jan 28 11:49:09	openvpn[77215]: UDPv4 link local (bound): [AF_INET]127.0.0.1:1194
    Jan 28 11:49:09	openvpn[77215]: UDPv4 link remote: [undef]
    Jan 28 11:49:09	openvpn[77215]: Initialization Sequence Completed
    

    There is no push attempt for some reason. I can't figure what would stop it. My googling didn't turn up anything that help me understand what is up with this. As this worked without issue with pfsense 2.1.5, any suggestions on what I might be missing?

    Thanks in advance.



  • Am also facing same issue after upgrading to 2.2 from 2.1.5.

    event_wait interrupted system call (code=4)

    Please help guys..