OPNsense Forum

English Forums => High availability => Topic started by: Walkraut on October 14, 2020, 10:22:30 am

Title: OpenVPN not working via VIP
Post by: Walkraut on October 14, 2020, 10:22:30 am

I am new to OPNsense and I am facing an issue that I am not quite sure how to solve.

I have two OPNsense VMs running on ESXi, each on a different host. For us they really only serve as OpenVPN servers and nothing more. HA is configured and the synchronisation between them is working fine. They are also configured to use a virtual IP and at least via http I can address them via their VIP. My problem is the OpenVPN part. OpenVPN works perfectly fine so long as the port forwarding points to the OPNsense's interface-IP. If I instead try to forward the traffic to the VIP, it won't work at all. I can see by the VPN log that the request won't even reach the OPNsense. If someone has some experience with this and can point me in the right direction, it would be much appreciated.

Title: Re: OpenVPN not working via VIP
Post by: mimugmail on October 15, 2020, 04:04:01 pm

Did you select the VIP in Server interface?

Title: Re: OpenVPN not working via VIP
Post by: Walkraut on October 15, 2020, 10:57:44 pm

Could you specify that?

Title: Re: OpenVPN not working via VIP
Post by: mimugmail on October 16, 2020, 07:35:21 am

In your OpenVPN server .. what is set in dropdown field "Interface"?

Title: Re: OpenVPN not working via VIP
Post by: Walkraut on October 16, 2020, 04:16:16 pm

Oh damn! That was the crux. Thanks a lot, man, totally missed that.

Title: Re: OpenVPN not working via VIP
Post by: mimugmail on October 16, 2020, 04:58:10 pm

Its the trigger for failover .. some to IPsec :)