Messages

1

19.7 Legacy Series / Re: VPN Server

« on: November 21, 2019, 12:32:48 am »

Yes obviously.
i have obfuscated it here for security reasons only.

2

19.7 Legacy Series / Re: Port Forwarding Problem

« on: November 21, 2019, 12:31:59 am »

ISP shouldn't block the connection. I can tell because during my test, few days ago I've been able to connect from WAN into my LAN through port forwarding. I don't have anything else except OPNSense and the Router.
My Router is configured with a static public IP address (no NAT).
Oh... i forgot, OPNSense is on ESXI but i don't think it could cause the problem, because i've bridged the 2 NIC (for LAN/WAN)

3

19.7 Legacy Series / Re: Port Forwarding Problem

« on: November 20, 2019, 12:01:33 am »

Obviously i need to reach the "FTP Server" from the internet, but i wasn't sure about how my "home router" manage the network, so i tried to configure the PF on the LAN for checking if is correctly set.
I can tell connectin straight from my PC to FTP server the connection is enstablished (so the service works), the problem is the PF configuration.

4

19.7 Legacy Series / Port Forwarding Problem

« on: November 19, 2019, 06:07:39 pm »

Hello,
i've tried to set the port forwarding on my opnsense. But it doens't work.
Originally i tested the PF from outside (WAN), to my LAN, but now i'm trying to simply redirect the connection into the LAN.

How you can see in the attachmentes, i have:
- 1 OPNSense (192.168.1.92)
- My PC (192.168.1.110)
- an FTP server (192.168.1.112)

i think to configured all correctly...

Can somebody help me?

UPDATE
i've even tried to use a different "destination address" like a LAN Address.
The installation is fresh. no rules added.

5

19.7 Legacy Series / Re: VPN Server

« on: November 18, 2019, 03:19:03 pm »

Yes they are in the same folder,
i've just tried with all in one file (no archive).

this is the log

Code: [Select]

⏎15/11/2019, 14:03:40 EVENT:  mbed TLS: ca certificate is undefined⏎15/11/2019, 14:03:40 Frame=512/2048/512 mssfix-ctrl=1250
⏎18/11/2019, 15:09:19 OpenVPN core 3.git::15c71c44 win x86_64 64-bit PT_PROXY built on Oct 31 2019 11:32:43
⏎18/11/2019, 15:09:19 Frame=512/2048/512 mssfix-ctrl=1250
⏎18/11/2019, 15:09:19 UNUSED OPTIONS
1 [persist-tun]
2 [persist-key]
6 [resolv-retry] [infinite]
8 [lport] [0]
9 [verify-x509-name] [C=IT, ST=Italy, L=Rome, O=Lab, emailAddress=spam@lab.local, CN=S...] [subject]
⏎18/11/2019, 15:09:19 EVENT: RESOLVE ⏎18/11/2019, 15:09:19 EVENT: WAIT ⏎18/11/2019, 15:09:19 Contacting [IP]:1194 via UDP
⏎18/11/2019, 15:09:19 Connecting to [IP]:1194 ([IP]) via UDPv4
⏎18/11/2019, 15:09:29 Server poll timeout, trying next remote entry...
⏎18/11/2019, 15:09:29 EVENT: RECONNECTING ⏎18/11/2019, 15:09:29 EVENT: RESOLVE ⏎18/11/2019, 15:09:29 EVENT: WAIT ⏎18/11/2019, 15:09:29 Contacting [IP]:1194 via UDP
⏎18/11/2019, 15:09:29 Connecting to [[IP]]:1194 ([IP]) via UDPv4
⏎18/11/2019, 15:09:39 Server poll timeout, trying next remote entry...
⏎18/11/2019, 15:09:39 EVENT: RECONNECTING ⏎18/11/2019, 15:09:39 EVENT: RESOLVE ⏎18/11/2019, 15:09:39 Contacting [IP]:1194 via UDP
⏎18/11/2019, 15:09:39 Connecting to [[IP]]:1194 ([IP]) via UDPv4
⏎18/11/2019, 15:09:39 EVENT: WAIT ⏎18/11/2019, 15:09:49 Server poll timeout, trying next remote entry...
⏎18/11/2019, 15:09:49 EVENT: RECONNECTING ⏎18/11/2019, 15:09:49 EVENT: RESOLVE ⏎18/11/2019, 15:09:49 Contacting [IP]:1194 via UDP
⏎18/11/2019, 15:09:49 EVENT: WAIT ⏎18/11/2019, 15:09:49 Connecting to [[IP]]:1194 ([IP]) via UDPv4
⏎18/11/2019, 15:09:59 Server poll timeout, trying next remote entry...
⏎18/11/2019, 15:09:59 EVENT: RECONNECTING ⏎18/11/2019, 15:09:59 EVENT: RESOLVE ⏎18/11/2019, 15:09:59 EVENT: WAIT ⏎18/11/2019, 15:09:59 Contacting [IP]:1194 via UDP
⏎18/11/2019, 15:09:59 Connecting to [[IP]]:1194 ([IP]) via UDPv4
⏎18/11/2019, 15:10:04 EVENT: DISCONNECTED ⏎18/11/2019, 15:11:50 OpenVPN core 3.git::15c71c44 win x86_64 64-bit PT_PROXY built on Oct 31 2019 11:32:43
⏎18/11/2019, 15:11:50 Frame=512/2048/512 mssfix-ctrl=1250
⏎18/11/2019, 15:11:50 UNUSED OPTIONS

6

19.7 Legacy Series / Re: VPN Server

« on: November 18, 2019, 12:36:10 pm »

I did. i've created the CA and the Certificate for my user.

file.ovpn

Code: [Select]

dev tun
persist-tun
persist-key
cipher AES-256-CBC
auth SHA512
client
resolv-retry infinite
remote [IP] 1194 udp
lport 0
verify-x509-name "C=IT, ST=Italy, L=Rome, O=Lab, emailAddress=spam@lab.local, CN=SSLVPN Server Certificate" subject
remote-cert-tls server
comp-lzo adaptive
pkcs12 My_OPENVPN_Server_admin.p12
tls-auth My_OPENVPN_Server_admin-tls.key 1

7

19.7 Legacy Series / Re: VPN Server

« on: November 18, 2019, 11:13:44 am »

The most relevant error in my VPN client is:
"EVENT: mbed TLS: ca certificate is undefined"

8

19.7 Legacy Series / VPN Server

« on: November 14, 2019, 04:03:28 pm »

Hello to everybody,
I have an issue about the creation of a VPN server.
I followed the official guide and other guides, but i didn't find a solution.
My network schema is so easy:

       INTERNET
             |
          (WAN)
       OPNSENSE
          (LAN)

I get an "import error" when i try to import the configuration on OpenVPN Client (windows)
I even tried on openvpn CLI (linux),
and using Viscosity (with the right conf file) on windows...
I tried and tried in many ways..
What could i do?
Thanks for the answer