Messages

the listening is 443

hello
yes, on both side it's listenning on the port 443

there is no event on the secondary on the firewall live view, look like I don't receive it, but the ping is working

Hello all,
I need help on a strange behavior of my firewalls  ???

I configured them with a subnet 172.16.31.0/30, the ping is ok, the failover is ok, but the XMLRPC Sync doesn't working

I can see the packets leave the master firewall, but can't see them entering the secondary (no deny neither accept)

I have the the rule to synchronize on port 443 (I also tried autorising all traffic, same thing)

I works few days, then nothing ....

thank you very much, I appreciate
I'm going to study it
I'll try to understand it  ;)
thank you again

hello,
and thank you very much for your help
I tried to search how to do it, but can't, seems a litle hard :(
I thought that we just have to run the script from the location where it is
thank you again  :)

hello,
thank you very much for you update
I already tried to make a script to run my both scripts, but no luck
I modified like this:
$conf .= "client-connect /root/client-conn.sh \n";

and inside client-conn.sh

#/bin/sh
/usr/local/etc/inc/plugins.inc.d/openvpn/ovpn_setup_cso.php server1

#the start of the second script
MYDATE=$(/bin/date +'%Y/%m/%d %H:%M:%S')
if [ "$script_type" = "client-connect" ]; then

I tried
$conf .= "client-connect \'/usr/local/etc/inc/plugins.inc.d/openvpn/ovpn_setup_cso.php {$mode_id}' && '/root/openvpn-telegram.sh'\ \n";

   $conf .= "client-connect \"/usr/local/etc/inc/plugins.inc.d/openvpn/ovpn_setup_cso.php {$mode_id}\" &&" /root/openvpn-telegram.sh" \n";

$conf .= "client-connect \"/usr/local/etc/inc/plugins.inc.d/openvpn/ovpn_setup_cso.php {$mode_id}\" ;" /root/openvpn-telegram.sh" \n";

$conf .= "client-connect \"/usr/local/etc/inc/plugins.inc.d/openvpn/ovpn_setup_cso.php {$mode_id} ; /root/openvpn-telegram.sh"\" \n"; 


$conf .= "client-connect \"/usr/local/etc/inc/plugins.inc.d/openvpn/ovpn_setup_cso.php {$mode_id}" ; "/root/openvpn-telegram.sh"\" \n";

$conf .= "client-connect \"/usr/local/etc/inc/plugins.inc.d/openvpn/ovpn_setup_cso.php {$mode_id} && /root/openvpn-telegram.sh\" \n";

$conf .= "client-connect \"/usr/local/etc/inc/plugins.inc.d/openvpn/ovpn_setup_cso.php {$mode_id} ; /root/openvpn-telegram.sh\" \n";

no way ....
I feel like alone  :-[

I found the file which create the file
it's /usr/local/etc/inc/plugins.inc.d/openvpn.inc
now I would like to understand how to run 2 scripts together

line 527
$conf .= "client-connect \"/usr/local/etc/inc/plugins.inc.d/openvpn/ovpn_setup_cso.php {$mode_id}\"\n";

I tried something like that, but it's not working
$conf .= "client-connect \"/usr/local/etc/inc/plugins.inc.d/openvpn/ovpn_setup_cso.php {$mode_id}";"/root/openvpn-telegram.sh\"\n";

any help please  :-[

does anyone know which file create /var/etc/openvpn/server1.conf. ?

each time I modify it, after the reload of openvpn, it remain the same (no change saved)

thank you

I found something that may be the problem

on the server configuration file, I already have an client-connect

client-connect "/usr/local/etc/inc/plugins.inc.d/openvpn/ovpn_setup_cso.php server1"

so how to add the secondary script with ?
thank you

 ::)

New thing is happened now

the script is working very well, however, the client override parameters are not working ...
if I remove the script, they work again

very strange, I can't find from where it took the parameters, what I know, that it's not using the static ip which are configured on override ip
example on normal condition: ip client 1: 10.99.99.2, ip client 2 10.99.99.4, ip client 3 10.99.99.99
when I put the script
ip client 1: 10.99.99.6, ip client 2 10.99.99.10, ip client 3 10.99.99.14

thank you

You are a genius !!!  ;)

when I hade a closer look,  I saw that there was an empty line just before
I removed it, and it's working now

THANK YOU very much !!

it begins with:
#!/bin/sh

thank you

Hello Everyone,
I'm facing to a problem, I tried to add scripts on the openvpn sections , Servers ->
Advanced configuration
I added 2 lines:
client-connect    /root/openvpn-telegram.sh
client-disconnect /root/openvpn-telegram.sh

I chmod +x and chmod 755 the file, however, I have everytime the error:
WARNING: Failed running command (--client-connect): could not execute external program

the configuration show the security level at 3 which normaly means that I can execute externals scripts
root@firewall:/var/etc/openvpn # more server1.conf
dev ovpns1
verb 3
dev-type tun
dev-node /dev/tun1
writepid /var/run/openvpn_server1.pid
script-security 3 <<<


I tried to change it to 2 but, after saving, it become "3"


-rwxr-xr-x  1 root  wheel   759 Mar 16 08:50 openvpn-telegram.sh*


thank you