Text only | Text with Images

OPNsense Forum

English Forums => 24.7, 24.10 Legacy Series => Topic started by: Timonator on February 11, 2025, 03:16:28 PM

Title: VPN stops working after random amount of days
Post by: Timonator on February 11, 2025, 03:16:28 PM
Hi all,

I've got NordVPN setup through openVPN. This works absolutely great, but after a random amount of time, the connection fails.
OpenVPN starts spamming: write UDPv4: Can't assign requested address (fd=7,code=49)

What I can find that there is some routing issue, clogging up OpenVPN, a restart is then required. But because my DNS goes through a PiHole. resolving the VPN hostname does not work. So everytime I end up disabling firewall rule for VPN. Making sure I have connection again. Then re-enabling firewall rule for VPN access.

Main question is how can I prevent the upper error from OpenVPN, so I don't have a random blackout? Or a way, that I can recover from this faster.
Title: Re: VPN stops working after random amount of days
Post by: nicholaswkc on February 12, 2025, 07:35:13 AM
Show us your vpn configuration and firewall rules.
Title: Re: VPN stops working after random amount of days
Post by: Timonator on February 12, 2025, 01:25:11 PM
Here are my firewall rules:
Of course there are the automatically generated rules (not sure if there is an easy format I can extract these settings, so I am not typing them out)

Protocol: IPv4 TCP
source: *
Port: *
Destination: LAN address
Port: 443
Gateway: *
Description: Anti Lockout

Protocol: IPv4 TCP
source: *
Port: *
Destination: LAN address
Port: 80
Gateway: *
Description: Anti Lockout

Protocol: IPv4*
source: LAN net
Port: *
Destination: LAN address
Port: *
Gateway: *
Description:

Protocol: IPv4*
source: !VPN_Exceptions(list containing PS5 ip)
Port: *
Destination: LAN address
Port: *
Gateway: NORDVPN_VPN4
Description: Route all normal traffic through VPN

Protocol: IPv4*
source: VPN_Exceptions(list containing PS5 ip)
Port: *
Destination: LAN address
Port: *
Gateway: WAN_GW
Description: Route PS5 traffic through normal gateway

My OpenVPN settings:
Description: NordVPN
Server Mode: Peer to Peer (SSL/TLS)
Protocol: UDP4
Device mode: tun
Interface: any
Remote server: be185.nordvpn.com port 1194 (and many other servers)
Select remote server at random -> checked
Retry DNS resolution --> checked infinitely resolve remote server
proxy authentication extra options: none
Username and pass --> is correct as VPN is working
TLS Authentication: Enabled - Authentication only
TLS Shared key -> copied from configuration NordVPN guide
Peer Certificate Authorisy: NordVPN_BE189_CA
Client Certificate: None (Username and Password required)
Encryption algorithm (deprecated): AES-256-GCM (256 bit key, 128 bit block, TLS client/server mode only
Compression: Legacy - Disabled LZO algorithm (--comp-lzo no)
don't add/remove routes --> checked
Advanced:
Code Select
remote-random;
tun-mtu 1500;
tun-mtu-extra 32;
mssfix 1450;
persist-key;
persist-tun;
reneg-sec 0;
remote-cert-tls server;Verbosity level: 3 (recommended)
Text only | Text with Images