Hi, i have a fresh install of OPNSense updated to 24.1.9. I try to create a OpenVPN server using the new "Instances" section following this guide: https://docs.opnsense.org/manual/how-tos/sslvpn_instance_roadwarrior.html
When from my client i try to connect i get this message and it not work.
TCP/UDP: Incoming packet rejected from [AF_INET]79.20.110.xxx:11194[2], expected peer address: [AF_INET]192.168.1.xxx:11194 (allow this incoming source address/port by removing --remote or adding --float)
What i mssing?
Thanks
Are you testing from a public IP address? 192.168.1.xxx:11194 may be blocked. Check out the 'Block private networks' flag on the interface.
Already unflaged.
OPNSense has 2 networks:
WAN: 192.168.1.0/24 (my home network)
LAN: 10.50.140.0/24 (internal network).
The client is a pc connect via Wifi on network 192.168.1.0
Hi,
This looks like a firewall issue, more than a VPN server issue.
Could you have a look in the firewall logs ?
Quote from: badstorm on July 10, 2024, 12:01:55 PM
OPNSense has 2 networks:
WAN: 192.168.1.0/24 (my home network)
LAN: 10.50.140.0/24 (internal network).
The client is a pc connect via Wifi on network 192.168.1.0
Provided the settings are correct and the corresponding rules are defined, you cannot test the VPN connection if you are in the same network.
Test the client export file on the smartphone in the mobile network.
Quote from: Jean-Christophe on July 10, 2024, 12:28:12 PM
Hi,
This looks like a firewall issue, more than a VPN server issue.
Could you have a look in the firewall logs ?
You are right. My fault. I forgot the old gateway on. Shutting down that one all works. Thanks a lot.