OpenVPN setup but not accepting connections
-
We have a router setup using PPPoE pass-through to a pfSense firewall, this is connected fine and is assigned a dynamic external IPv4 address. We also have a /29 subnet with 5 usable IPs from our ISP, these have all been added individually as IP aliases.
We've created an OpenVPN server with the following settings:
Files have been exported using the client export utility and put onto a remote machine to connect to host which points to one of the VIPs, after entering login details using OpenVPN Manger it just sits at the WAIT state as if it's awaiting a response from the server. Firewall logs show that it is passing the traffic:
and a packet capture also provides results:
15:36:24.274219 AF IPv4 (2), length 74: (tos 0x28, ttl 110, id 22168, offset 0, flags [none], proto UDP (17), length 70)
94.197.121.160.15409 > 81.xxx.xx.xxx.1194: [udp sum ok] UDP, length 42
15:36:24.274285 AF IPv4 (2), length 74: (tos 0x28, ttl 109, id 22168, offset 0, flags [none], proto UDP (17), length 70)
94.197.121.160.15409 > 81.xxx.xx.xxx.1194: [udp sum ok] UDP, length 42
15:36:26.303525 AF IPv4 (2), length 74: (tos 0x28, ttl 110, id 22169, offset 0, flags [none], proto UDP (17), length 70)
94.197.121.160.15409 > 81.xxx.xx.xxx.1194: [udp sum ok] UDP, length 42
15:36:26.303544 AF IPv4 (2), length 74: (tos 0x28, ttl 109, id 22169, offset 0, flags [none], proto UDP (17), length 70)
94.197.121.160.15409 > 81.xxx.xx.xxx.1194: [udp sum ok] UDP, length 42
15:36:30.925611 AF IPv4 (2), length 74: (tos 0x28, ttl 110, id 22170, offset 0, flags [none], proto UDP (17), length 70)
94.197.121.160.15409 > 81.xxx.xx.xxx.1194: [udp sum ok] UDP, length 42
15:36:30.925631 AF IPv4 (2), length 74: (tos 0x28, ttl 109, id 22170, offset 0, flags [none], proto UDP (17), length 70)
94.197.121.160.15409 > 81.xxx.xx.xxx.1194: [udp sum ok] UDP, length 42But the connection is never established, OpenVPN logs just show several:
Aug 15 15:46:04 openvpn[27836]: MANAGEMENT: Client connected from /var/etc/openvpn/server1.sock
Aug 15 15:46:04 openvpn[27836]: MANAGEMENT: CMD 'status 2'
Aug 15 15:46:04 openvpn[27836]: MANAGEMENT: CMD 'quit'
Aug 15 15:46:04 openvpn[27836]: MANAGEMENT: Client disconnected
Aug 15 15:47:05 openvpn[27836]: MANAGEMENT: Client connected from /var/etc/openvpn/server1.sock
Aug 15 15:47:06 openvpn[27836]: MANAGEMENT: CMD 'status 2'
Aug 15 15:47:06 openvpn[27836]: MANAGEMENT: CMD 'quit'
Aug 15 15:47:06 openvpn[27836]: MANAGEMENT: Client disconnected
Aug 15 15:48:07 openvpn[27836]: MANAGEMENT: Client connected from /var/etc/openvpn/server1.sock
Aug 15 15:48:07 openvpn[27836]: MANAGEMENT: CMD 'status 2'
Aug 15 15:48:08 openvpn[27836]: MANAGEMENT: CMD 'quit'
Aug 15 15:48:08 openvpn[27836]: MANAGEMENT: Client disconnectedBut I don't believe these are the client trying to connect as they appear even without me trying to connect.
Any ideas what's going on here? I've tried connecting to the PPPoE assigned IP address as well with the same results…
-
Try to change over VPN servers interface to the specific VIP. If that works and you need it listening on more than this one resolve that with NAT port forwarding.