OpenVPN multiple server issues

Started by user1234, January 05, 2021, 09:26:50 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 05, 2021, 09:26:50 PM
I have found a strange issue on opnsense 20.7.7_1-amd64 when running multiple OpenVPN servers.

The first server seems to work fine but I am finding the second server (configured the same but with different tunnel subnet and port) users can connect to the VPN but none of their traffic is routed.

I have tested this on two separate opnsense instances and both had strange routing/firewall problems with the second OpenVPN server.

Any ideas why this might happen?
January 05, 2021, 09:42:00 PM #1
did you assign the 2 ovpn interfaces manually and configured fw rules per interface?
January 05, 2021, 10:14:28 PM #2
Originally I didn't assign interfaces and I set the firewall rules via the OpenVPN group so both vpn servers had the same firewall rules. Doing this connecting to the first vpn traffic was routed, but connecting to the second vpn no traffic appeared to be routed.

I have since tried assigning interfaces for each and setting firewall rules but this had not helped.
January 05, 2021, 11:38:40 PM #3 Last Edit: January 06, 2021, 11:48:14 AM by user1234
It has started working again now, seems that a reboot of opnsense is required after assigning the interfaces otherwise I get strange behaviour. Will confirm this is the same on the other opnsense instance tomorrow.

update: correction this was a different problem. Problem still exists.
January 06, 2021, 11:47:07 AM #4
It didn't work for long.

I think I have worked out another solution. If I "disable reply-to" on the rules everything works nicely.
An alternative solution seems to be adding the assigned vpn interface to a firewall group and setting the firewall rules here.

Is this a bug or expected?
Print
Go Up Pages1
User actions