Text only | Text with Images

OPNsense Forum

English Forums => 25.7, 25.10 Series => Topic started by: NeoV00 on October 21, 2025, 03:18:52 PM

Title: ldap through openvpn instead of ipsec
Post by: NeoV00 on October 21, 2025, 03:18:52 PM
Hi everyone,

After having mostly been a silent reader here for the past few months, I've now run into an issue I can't solve on my own and I'm hoping for your help.

Up until now, my firewall was connected to our data center via an IPSec tunnel, where our domain controller is located. To ensure that traffic from the firewall could reach the DC through the IPSec tunnel, I had configured a static route pointing to the local LAN interface. The connection has been working well over the past few months.

Yesterday, I switched the site-to-site connection from IPSec to OpenVPN. Since then, the communication between the firewall and the domain controller has stopped working, with or without the static route.

The only related entry I can find in the logs is:

LDAP bind error [; Can't contact LDAP server]

My goal is to have the firewall connected to the domain controller in the data center again, so it can use it for VPN user authentication. Right now, however, it seems that the firewall can't reach the DC through the new tunnel.

thanks for your support :)

Title: Re: ldap through openvpn instead of ipsec
Post by: NeoV00 on October 21, 2025, 05:07:35 PM
Quote from: NeoV00 on October 21, 2025, 03:18:52 PMHi everyone,

After having mostly been a silent reader here for the past few months, I've now run into an issue I can't solve on my own and I'm hoping for your help.

Up until now, my firewall was connected to our data center via an IPSec tunnel, where our domain controller is located. To ensure that traffic from the firewall could reach the DC through the IPSec tunnel, I had configured a static route pointing to the local LAN interface. The connection has been working well over the past few months.

Yesterday, I switched the site-to-site connection from IPSec to OpenVPN. Since then, the communication between the firewall and the domain controller has stopped working, with or without the static route.

The only related entry I can find in the logs is:

LDAP bind error [; Can't contact LDAP server]

My goal is to have the firewall connected to the domain controller in the data center again, so it can use it for VPN user authentication. Right now, however, it seems that the firewall can't reach the DC through the new tunnel.

thanks for your support :)



It was easier than expected. The packets from the OpenVPN server network were blocked in the data center. It's working now.
Text only | Text with Images