Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - jphilipfry

Pages1
#1
General Discussion / OpenVPN works for LAN 2 but can't access LAN 1 (opnsense GUI)
January 20, 2024, 05:42:47 PM
Hi, I'm having trouble accessing my gui or  ssh even though I have a id_rsa key. just putting in the IP 192.168.10.1 to access gui with private ip openvpn tunnel I set up doesn't work but I can access LAN 2 perfectly fine which is on the 192.168.20.2 subnet through my laptop or iphone.

What I find strange though is that sometimes when I put in LAN 2 IP on my iphone, it can sometimes connect. Right now it works on safari, but when I try on my laptop either through google, Firefox, or brave, nothing works.  LIKE right now, my iphone can connect to LAN 1 IP???

So it's definitely not a browser issue but I find that weird. Yeah I unchecked all block private networks on my WAN and LAN and LAN2 so that's not the issue. I also added the 2 firewall rules the wizard tells you to check so your vpn has access, so idk what's happening.


Anyone have a clue for me? Thanks.
#2
General Discussion / Re: Port forwarding: trying to get access to my exsi host via wireless and opnsense
January 20, 2024, 12:13:36 AM
Thanks a lot! I'll try this for sure.
#3
General Discussion / Port forwarding: trying to get access to my exsi host via wireless and opnsense
January 19, 2024, 11:25:41 PM
Hi I hope someone can help me with this issue. What I am trying to achieve is that I am on a different subnet and I'm trying to connect to my exsi host with port forward, but I can't. So far, I can only connect to my exsi host if my laptop is connected via ethernet on LAN 1 since they can ping to each other.

I have 2 Lans on my opnsense box configured. It's a VP 2410 if that matters.

Lan 1: 192.168.10.1 which is my opnsense gui

Lan 2: 192.168.20.2 which is my exsi host.

What I tried to setup in the firewall as I thought this was the issue was

Interface: wan
Protocol: TCP
source Address: ANY
source Ports: ANY
Destination: LAN2 address
Destination port range: 80 to 80
IP redirected: 192.168.20.2/24 (which is exsi host I am trying to get traffic sent to)
ports redirected: HTTP

Thanks if anyone needs more info, I can send photos of the other rules, but they are just allow internet rules with any on all the settings on my LAN, LAN2.

I will say I can't ping my WAN address which is a private ip so that's weird, but that's because it's behind another router I assume. (I'm on a college campus). I don't know if that's an issue but all my interfaces are up (green).
#4
General Discussion / Can't get into openvpn
January 12, 2024, 04:34:59 PM

Hi all, I have setup the openvpn configs with my 3 files already which are the opvn file itself, the registration entries and personal info file. Everything was going well until I downloaded latest version of openvpn and tried to connect, then it prompted me the password which I thought was for the user password I thought I made for the profile on my opnsense firewall. down below are the logs, any help please?



2024-01-12 00:25:53 OpenVPN 2.6.8 [git:v2.6.8/3b0d9489cc423da3] Windows [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] [DCO] built on Nov 17 2023
2024-01-12 00:25:53 Windows version 10.0 (Windows 10 or greater), amd64 executable
2024-01-12 00:25:53 library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10
2024-01-12 00:25:53 DCO version: 1.0.0
2024-01-12 00:25:59 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2024-01-12 00:25:59 OpenSSL: error:0308010C:digital envelope routines::unsupported:Global default library context, Algorithm (RC2-40-CBC : 0), Properties ()
2024-01-12 00:25:59 OpenSSL: error:11800071:PKCS12 routines::mac verify failure:
2024-01-12 00:25:59 Decoding PKCS12 failed. Probably wrong password or unsupported/legacy encryption
2024-01-12 00:25:59 SIGUSR1[soft,private-key-password-failure] received, process restarting
2024-01-12 00:26:06 OpenSSL: error:0308010C:digital envelope routines::unsupported:Global default library context, Algorithm (RC2-40-CBC : 0), Properties ()
2024-01-12 00:26:06 OpenSSL: error:11800071:PKCS12 routines::mac verify failure:
2024-01-12 00:26:06 Decoding PKCS12 failed. Probably wrong password or unsupported/legacy encryption
2024-01-12 00:26:06 SIGUSR1[soft,private-key-password-failure] received, process restarting
2024-01-12 00:26:23 ERROR: could not read Private Key username/password/ok/string from management interface
2024-01-12 00:26:23 Exiting due to fatal error
#5
General Discussion / Trying to access my opnsense gui through WAN interface
January 11, 2024, 07:00:02 PM
Hi I'm all new to this so instead of using my LAN to log in: 192.168.10.1, I would like to do it through my wan address which is 192.168.1.10. this is so I could log in at all times and don't have to hook up a ethernet cable through the LAN slot.

I tried to figure it out and throught it had something to do with the firewall rules in WAN, so

here's my rule set for that.

Action: pass
quick: paply the action immediately on match
interface: WAN
direction: in
TCP/IP: IPV4
Protocol: TCP
Source: any
Destination: WAN address
Destination port range: HTTP to HTTP
Description: Allow access web gui from wan
everything else is left blank but gateway is on default

any help here? Thanks
Pages1