OPNsense Forum
English Forums => 24.1 Legacy Series => Topic started by: badstorm on July 10, 2024, 11:43:12 am
-
Hi, i have a fresh install of OPNSense updated to 24.1.9. I try to create a OpenVPN server using the new "Instances" section following this guide: https://docs.opnsense.org/manual/how-tos/sslvpn_instance_roadwarrior.html
When from my client i try to connect i get this message and it not work.
TCP/UDP: Incoming packet rejected from [AF_INET]79.20.110.xxx:11194[2], expected peer address: [AF_INET]192.168.1.xxx:11194 (allow this incoming source address/port by removing --remote or adding --float)
What i mssing?
Thanks
-
Are you testing from a public IP address? 192.168.1.xxx:11194 may be blocked. Check out the 'Block private networks' flag on the interface.
-
Already unflaged.
OPNSense has 2 networks:
WAN: 192.168.1.0/24 (my home network)
LAN: 10.50.140.0/24 (internal network).
The client is a pc connect via Wifi on network 192.168.1.0
-
Hi,
This looks like a firewall issue, more than a VPN server issue.
Could you have a look in the firewall logs ?
-
OPNSense has 2 networks:
WAN: 192.168.1.0/24 (my home network)
LAN: 10.50.140.0/24 (internal network).
The client is a pc connect via Wifi on network 192.168.1.0
Provided the settings are correct and the corresponding rules are defined, you cannot test the VPN connection if you are in the same network.
Test the client export file on the smartphone in the mobile network.
-
Hi,
This looks like a firewall issue, more than a VPN server issue.
Could you have a look in the firewall logs ?
You are right. My fault. I forgot the old gateway on. Shutting down that one all works. Thanks a lot.