OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of pfoo »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - pfoo

Pages: [1]
1
23.7 Legacy Series / Re: OPBSense lost client specific overrides after upgrade to OPNsense 23.7.1_3-amd64
« on: August 26, 2023, 10:30:00 pm »
Yep going to create an issue.

On 23.7.2 + patch d3af50a file /usr/local/opnsense/mvc/app/models/OPNsense/OpenVPN/OpenVPN.php :
Code: [Select]
                    // server only setttings
                    if (!empty((string)$node->server) || !empty((string)$node->server_ipv6)) {
                        $options['client-config-dir'] = "/var/etc/openvpn-csc/{$node->vpnid}";

$node->vpnid where it probably should now be $node_uuid

2
23.7 Legacy Series / Re: OPBSense lost client specific overrides after upgrade to OPNsense 23.7.1_3-amd64
« on: August 26, 2023, 10:21:53 pm »
Yup was already on OPNsense 23.7.2-amd64 when I tried the patch

3
23.7 Legacy Series / Re: OPBSense lost client specific overrides after upgrade to OPNsense 23.7.1_3-amd64
« on: August 26, 2023, 10:02:55 pm »
After applying d3af50a logs mention :
Code: [Select]
user 'pfoo' authenticated using 'Local Database' CSO [CN]:/var/etc/openvpn-csc/961988-0461-4-8933-779744/pfoo
However directory /var/etc/openvpn-csc/961988-0461-4-8933-779744/ does not exist.
If I create the directory, the file /var/etc/openvpn-csc/961988-0461-4-8933-779744/pfoo is created, but not used by openvpn.

instance config file (even after modifying the port to trigger a config regeneration) still mention
Code: [Select]
client-config-dir /var/etc/openvpn-csc/3

4
23.7 Legacy Series / Re: OPBSense lost client specific overrides after upgrade to OPNsense 23.7.1_3-amd64
« on: August 26, 2023, 09:41:00 pm »
Hi,

I'm hitting the same issue, CSO is not working with new openvpn instance despite having the instance checked in the CSO 'Servers' field

According to the instance config file CSO directory is /var/etc/openvpn-csc/3/ but it stays empty

Log from legacy 'server' show mentions to OPTIONS IMPORT: reading client specific options from: /var/etc/openvpn-csc/1/ but log from instance has no mention of this import

OPNsense 23.7.2-amd64

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2