"
Does anyone have the configuration steps for setting up opnsense connection to virgin media (business). The supplied router is operating in bridged mode and opnsense is allowing access to the internet via the WAN connection (configured as DHCP). The ISP have just enabled the block of public IPs and the modem has been rebooted and the internet connection has been restored. However ive just read ISPs setup instructions (for their router) and it mentions GRE configuration. My sense is ive just stumbled into another minefield (having given up on BTs PPPOE setup) - so im hoping someone in the UK has a functioning opnsense firewall connected to virgin media with multiple public ip addresses configured and working... and that they would be willing to share their configuration.. thank you in advance
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#2
Virtual private networks / Re: PPPoE WAN (BT 8 IP static IP subnet) OpenVPN Config
July 22, 2023, 09:35:43 PM
Hi BArt, so wanting to stick with getting a vpn connection direct to tthe firewall, how are you "binding" traffic associated with a specific WAN IP to a specific UDP port - youll note below that i have deliberately used UDP 1193 to be distinct from the 1194 used for an internal linux server vpn connection that works
cheers
ALex
cheers
ALex
#3
Virtual private networks / PPPoE WAN (BT 8 IP static IP subnet) OpenVPN Config
July 21, 2023, 08:16:22 PM
Hello Folks
Im banging my head against the wall trying to get an OpenVPN road warrior connection to the WAN address of the OPNSense firewall. The firewall is configured PPPoE WAN with a BT subnet of public IP addresses. The BT modem is setup in bridge mode. Firewall is working ok im able to get an OpenVPN connection to a linux server using one of the public IPs (a NATet VirtualIP). What I cant achieve is an OpenVPN connection to the firewall itself. Ive followed instructions from OPNSense documentation
Any guidance on how best to debug this would be appreciated, tools, methods etc. My sense is this has something to do with the weird IP subnet allocation that BT gives
logs from the Viscocity VPN client below (x.y.z.w is one of the WAN IPs which has been allocated to the connection
Jul 21 6:59:53 PM: Valid endpoint found: x.y.z.w:1193:udp
Jul 21 6:59:53 PM: TCP/UDP: Preserving recently used remote address: [AF_INET]x.y.z.w:1193
Jul 21 6:59:53 PM: UDP link local (bound): [AF_INET][undef]:0
Jul 21 6:59:53 PM: UDP link remote: [AF_INET]x.y.z.w:1193
Jul 21 7:03:14 PM: SIGUSR1[soft,tls-error] received, process restarting
Jul 21 7:03:24 PM: Valid endpoint found: x.y.z.w:1193:udp
Jul 21 7:03:24 PM: TCP/UDP: Preserving recently used remote address: [AF_INET]x.y.z.w:1193
Jul 21 7:03:24 PM: UDP link local (bound): [AF_INET][undef]:0
Jul 21 7:03:24 PM: UDP link remote: [AF_INET]x.y.z.w:1193
Jul 21 7:04:24 PM: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jul 21 7:04:24 PM: TLS Error: TLS handshake failed
Im banging my head against the wall trying to get an OpenVPN road warrior connection to the WAN address of the OPNSense firewall. The firewall is configured PPPoE WAN with a BT subnet of public IP addresses. The BT modem is setup in bridge mode. Firewall is working ok im able to get an OpenVPN connection to a linux server using one of the public IPs (a NATet VirtualIP). What I cant achieve is an OpenVPN connection to the firewall itself. Ive followed instructions from OPNSense documentation
Any guidance on how best to debug this would be appreciated, tools, methods etc. My sense is this has something to do with the weird IP subnet allocation that BT gives
logs from the Viscocity VPN client below (x.y.z.w is one of the WAN IPs which has been allocated to the connection
Jul 21 6:59:53 PM: Valid endpoint found: x.y.z.w:1193:udp
Jul 21 6:59:53 PM: TCP/UDP: Preserving recently used remote address: [AF_INET]x.y.z.w:1193
Jul 21 6:59:53 PM: UDP link local (bound): [AF_INET][undef]:0
Jul 21 6:59:53 PM: UDP link remote: [AF_INET]x.y.z.w:1193
Jul 21 7:03:14 PM: SIGUSR1[soft,tls-error] received, process restarting
Jul 21 7:03:24 PM: Valid endpoint found: x.y.z.w:1193:udp
Jul 21 7:03:24 PM: TCP/UDP: Preserving recently used remote address: [AF_INET]x.y.z.w:1193
Jul 21 7:03:24 PM: UDP link local (bound): [AF_INET][undef]:0
Jul 21 7:03:24 PM: UDP link remote: [AF_INET]x.y.z.w:1193
Jul 21 7:04:24 PM: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jul 21 7:04:24 PM: TLS Error: TLS handshake failed
Pages1
