Hello,
I configured an OpenVPN server on pfSense (VPS).
the users (files are automatically configured by pfSense) work properly on Windows PCs and I can ping everything.
But when I put the file on RUT 955 - nothing happens. RUT955 is not connected( network status - disconnected.
Can anybody help to resolve this problem?
Please see the configured file:
dev tap
persist-tun
persist-key
data-ciphers AES-256-GCM
data-ciphers-fallback AES-256-GCM
auth SHA256
tls-client
client
resolv-retry infinite
remote 213.xxx.xxx.x9 1194 tcp4
lport 0
verify-x509-name "serverca" name
remote-cert-tls server
I also tried to configure openVPN client on RUT with separated files xxx.crt + xxx.crt + xxx.key. As the result - RUT955 were connected for a short time to pfsense and after few seconds disconnected and no more appeared. Please see the log below
Tue Mar 16 10:30:18 2021 daemon.warn openvpn(client_bbb)[25156]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Tue Mar 16 10:20:15 2021 daemon.warn openvpn(client_bbb)[25156]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Tue Mar 16 10:20:15 2021 daemon.notice openvpn(client_bbb)[25156]: Re-using SSL/TLS context
Tue Mar 16 10:20:15 2021 daemon.notice openvpn(client_bbb)[25156]: LZO compression initializing
Tue Mar 16 10:20:15 2021 daemon.notice openvpn(client_bbb)[25156]: Control Channel MTU parms [ L:1656 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Tue Mar 16 10:20:15 2021 daemon.notice openvpn(client_bbb)[25156]: Data Channel MTU parms [ L:1656 D:1450 EF:124 EB:412 ET:32 EL:3 ]
Tue Mar 16 10:20:15 2021 daemon.notice openvpn(client_bbb)[25156]: Local Options String (VER=V4): 'V4,dev-type tap,link-mtu 1584,tun-mtu 1532,proto TCPv4_CLIENT,comp-lzo,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-client'
Tue Mar 16 10:20:15 2021 daemon.notice openvpn(client_bbb)[25156]: Expected Remote Options String (VER=V4): 'V4,dev-type tap,link-mtu 1584,tun-mtu 1532,proto TCPv4_SERVER,comp-lzo,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-server'
Tue Mar 16 10:20:15 2021 daemon.notice openvpn(client_bbb)[25156]: TCP/UDP: Preserving recently used remote address: [AF_INET]213.xxx.xxx.x9:1194
Tue Mar 16 10:20:15 2021 daemon.notice openvpn(client_bbb)[25156]: Socket Buffers: R=[87380->87380] S=[16384->16384]
Tue Mar 16 10:20:15 2021 daemon.notice openvpn(client_bbb)[25156]: Attempting to establish TCP connection with [AF_INET]213.xxx.xxx.x9:1194 [nonblock]
Tue Mar 16 10:20:16 2021 daemon.notice openvpn(client_bbb)[25156]: TCP connection established with [AF_INET]213.xxx.xxx.x9:1194
Tue Mar 16 10:20:16 2021 daemon.notice openvpn(client_bbb)[25156]: TCP_CLIENT link local: (not bound)
Tue Mar 16 10:20:16 2021 daemon.notice openvpn(client_bbb)[25156]: TCP_CLIENT link remote: [AF_INET]213.xxx.xxx.x9:1194
Tue Mar 16 10:20:16 2021 daemon.err openvpn(client_bbb)[25156]: Connection reset, restarting [0]
Tue Mar 16 10:20:16 2021 daemon.notice openvpn(client_bbb)[25156]: TCP/UDP: Closing socket
Tue Mar 16 10:20:16 2021 daemon.notice openvpn(client_bbb)[25156]: SIGUSR1[soft,connection-reset] rec
Thanks a lot in advance