Fresh Install 2.2 x64: Openvpn push issue
-
Hey all,
Banging my head on this one. So when I first upgraded to 2.2 from 2.1.5 my 2 openvpn serves stop working. Tried to debug it a little got nowhere so this morning I did a fresh install. Currently it setup with 2 wans and 1 lan lagg with 2 vlans on it. No limiters, no qos, no fancy firewall rules and no additional packages.
I fixed my second openvpn for my roadwarrior setup so I know pfsense is pushing routes on 1 openvpn server but I can no longer get push routes to work on the first one.
It's a Tomato Shibby MIPSR2-123 (Openvpn 2.3.4) router setup as a remote client with client certs and the pfsense is the server with server certs. I get this on the client:
A bunch of cert verifications... Jan 28 11:45:35 xxx daemon.notice openvpn[929]: Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key Jan 28 11:45:35 xxx daemon.notice openvpn[929]: Data Channel Encrypt: Using 512 bit message hash 'SHA512' for HMAC authentication Jan 28 11:45:35 xxx daemon.notice openvpn[929]: Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key Jan 28 11:45:35 xxx daemon.notice openvpn[929]: Data Channel Decrypt: Using 512 bit message hash 'SHA512' for HMAC authentication Jan 28 11:45:35 xxx daemon.notice openvpn[929]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA Jan 28 11:45:35 xxx daemon.notice openvpn[929]: [K-VPN] Peer Connection Initiated with [AF_INET]xxx.xxx.xxx.xxx:11194 Jan 28 11:45:36 xxx daemon.notice openvpn[929]: Initialization Sequence Completed
pfsense
Jan 28 11:45:35 openvpn[76993]: P-VPN/xxx.xxx.xxx.xxx:39272 MULTI_sva: pool returned IPv4=192.168.99.6, IPv6=(Not enabled) Jan 28 11:47:35 openvpn[76993]: P-VPN/xxx.xxx.xxx.xx:39272 [P-VPN] Inactivity timeout (--ping-restart), restarting Jan 28 11:49:09 openvpn[76993]: event_wait : Interrupted system call (code=4) Jan 28 11:49:09 openvpn[76993]: /usr/local/sbin/ovpn-linkdown ovpns1 1500 1602 192.168.99.1 192.168.99.2 init Jan 28 11:49:09 openvpn[76993]: SIGTERM[hard,] received, process exiting Jan 28 11:49:09 openvpn[76992]: OpenVPN 2.3.6 amd64-portbld-freebsd10.1 [SSL (OpenSSL)] [LZO] [MH] [IPv6] built on Dec 1 2014 Jan 28 11:49:09 openvpn[76992]: library versions: OpenSSL 1.0.1k-freebsd 8 Jan 2015, LZO 2.08 Jan 28 11:49:09 openvpn[77215]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Jan 28 11:49:09 openvpn[77215]: Initializing OpenSSL support for engine 'cryptodev' Jan 28 11:49:09 openvpn[77215]: Control Channel Authentication: using '/var/etc/openvpn/server1.tls-auth' as a OpenVPN static key file Jan 28 11:49:09 openvpn[77215]: TUN/TAP device ovpns1 exists previously, keep at program end Jan 28 11:49:09 openvpn[77215]: TUN/TAP device /dev/tun1 opened Jan 28 11:49:09 openvpn[77215]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0 Jan 28 11:49:09 openvpn[77215]: /sbin/ifconfig ovpns1 192.168.99.1 192.168.99.2 mtu 1500 netmask 255.255.255.255 up Jan 28 11:49:09 openvpn[77215]: /usr/local/sbin/ovpn-linkup ovpns1 1500 1602 192.168.99.1 192.168.99.2 init Jan 28 11:49:09 openvpn[77215]: UDPv4 link local (bound): [AF_INET]127.0.0.1:1194 Jan 28 11:49:09 openvpn[77215]: UDPv4 link remote: [undef] Jan 28 11:49:09 openvpn[77215]: Initialization Sequence Completed
There is no push attempt for some reason. I can't figure what would stop it. My googling didn't turn up anything that help me understand what is up with this. As this worked without issue with pfsense 2.1.5, any suggestions on what I might be missing?
Thanks in advance.
-
Am also facing same issue after upgrading to 2.2 from 2.1.5.
event_wait interrupted system call (code=4)
Please help guys..