Show Posts
1
General Discussion / OpenVPN Multiple Servers/Ports Difficulty
« on: February 16, 2019, 03:24:08 am »
OPNsense 18.7.10
I created a VPN Connection with nearly default settings (allow inter client communication and changed encryption) and was able to connect without issue on 1194. Due to some site specific connectivity issues I decided to also run a server on TCP 443. My first clumsy attempt I copied the config of the first server and changed the port. I was able to connect on both ports, but one of the ports passed no traffic in either direction. Stopping the server on 1194 and restarting the server on TCP443 allowed me to connect. Upon starting 1194 I was able to connect, but no traffic.
For my second attempt, I ran the config wizard again (all default settings) and created another cert Still nothing. Then I assigned a different subnet and now both are working at the same time.
I now suspect it could have something to do with tap/tun(currently tun) or topology option(Currently unchecked)?
Is it possible to connect with the same cert on the same subnet? Client only connects to one port at a time. If so, what settings do I need to edit to run multiple OpenVPN servers on the same subnet?
Thanks for any suggestions!
Edit: Got something working for now. Still tun, topology checked, Assigned a different /28 to each server. Still wondering if it is possible to assign both servers the same subnet?
I created a VPN Connection with nearly default settings (allow inter client communication and changed encryption) and was able to connect without issue on 1194. Due to some site specific connectivity issues I decided to also run a server on TCP 443. My first clumsy attempt I copied the config of the first server and changed the port. I was able to connect on both ports, but one of the ports passed no traffic in either direction. Stopping the server on 1194 and restarting the server on TCP443 allowed me to connect. Upon starting 1194 I was able to connect, but no traffic.
For my second attempt, I ran the config wizard again (all default settings) and created another cert Still nothing. Then I assigned a different subnet and now both are working at the same time.
I now suspect it could have something to do with tap/tun(currently tun) or topology option(Currently unchecked)?
Is it possible to connect with the same cert on the same subnet? Client only connects to one port at a time. If so, what settings do I need to edit to run multiple OpenVPN servers on the same subnet?
Thanks for any suggestions!
Edit: Got something working for now. Still tun, topology checked, Assigned a different /28 to each server. Still wondering if it is possible to assign both servers the same subnet?