Text only | Text with Images

OPNsense Forum

English Forums => Virtual private networks => Topic started by: marsch on July 30, 2021, 05:18:50 PM

Title: Another OpenVPN Struggle
Post by: marsch on July 30, 2021, 05:18:50 PM
I have tried setting up OpenVPN several times with no luck.  I have tried the built in wizard, following different guides, but can never get connected.  For whatever reason my connection keeps hitting the default deny rule.  I dont know what what I am missing.
Title: Re: Another OpenVPN Struggle
Post by: Fright on July 30, 2021, 05:37:30 PM
any rdr-rules that may affect traffic for openvpn port?
Title: Re: Another OpenVPN Struggle
Post by: marsch on July 30, 2021, 05:38:46 PM
Quote from: Fright on July 30, 2021, 05:37:30 PM
any rdr-rules that may affect traffic for openvpn port?

Unless they are automatically created, I dont think so.  Where would I look to see?
Title: Re: Another OpenVPN Struggle
Post by: Fright on July 30, 2021, 07:25:13 PM
Firewall: NAT: Port Forward
can you please click i button in live view record for this "default deny" records and share the detailed rule info?
Title: Re: Another OpenVPN Struggle
Post by: marsch on July 30, 2021, 10:18:36 PM
Quote from: Fright on July 30, 2021, 07:25:13 PM
Firewall: NAT: Port Forward
can you please click i button in live view record for this "default deny" records and share the detailed rule info?

Here is the full log of the deny rule.
Title: Re: Another OpenVPN Struggle
Post by: Fright on July 31, 2021, 11:57:17 AM
rather strange entries in the live log and in the "detailed info" (it seems to me) -expected to see a little different things for rdr-rules but..
could you show the rules from Firewall: NAT: Port Forward ?
Title: Re: Another OpenVPN Struggle
Post by: marsch on August 02, 2021, 10:40:00 PM
Quote from: Fright on July 31, 2021, 11:57:17 AM
rather strange entries in the live log and in the "detailed info" (it seems to me) -expected to see a little different things for rdr-rules but..
could you show the rules from Firewall: NAT: Port Forward ?

Currently I dont have any Port Forwards for OpenVPN.  Is that my problem?  The only Port Forwards I have are for plex, and a reverse proxy.  I can still send you screen shots if you would like.
Title: Re: Another OpenVPN Struggle
Post by: RamSense on August 03, 2021, 07:56:12 AM
@marsch
when adding openvpn in opnsense by the wizard, you probably should she a rule under firewall rules.
Not under NAT portforward but under
firewall->rules->WAN:
Protocol (IPv4 UDP)- Source (*)-   Port (*)- Destination (Wan address)- Port ("Your OpenVPN port number")- Gateway (*)- Schedule (*)

If it is not yet there, add it.
Title: Re: Another OpenVPN Struggle
Post by: Fright on August 06, 2021, 05:04:49 PM
QuoteCurrently I dont have any Port Forwards for OpenVPN.  Is that my problem?
no. it just shouldn't be. but live log shows that the packet is being processed by the rdr-rule hich shouldn't be. trying to understand why
QuoteI can still send you screen shots if you would like
yes, please
Text only | Text with Images