Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Virtual private networks
»
OpenVPN issues
« previous
next »
Print
Pages: [
1
]
Author
Topic: OpenVPN issues (Read 2054 times)
gearboxes
Newbie
Posts: 11
Karma: 0
OpenVPN issues
«
on:
May 21, 2021, 06:01:56 pm »
I am having a tough time with OpenVPN.
I posted about issues before with no response so I assume I am the only one with these issues.
When I posted before I was using a VM for Opnsense behind a NAT using a single interface. Since then I purchased a device from Protectli and now have an interface directly on the internet and still experience strange behavior.
As soon as users connect other connected will get disconnected and then they are not able to reconnect, or it will get connected but then not pass any traffic and then be disconnected after 1 min and then its a struggle to get reconnected with multiple attempts.
I had one machine connected for 5 days and also continued to connect / disconnect with my laptop periodically without any issues.
I asked one user to switch to this VPN again and boom I got disconnected and then unable to get reconnected, well I get connected buy the no traffic is passed and after a min it disconnected me and then I have to try again and again as mentioned.
It really does not seem right that another user trying to connect can disconnect other connected users.
What could be causing this behavior?
Logged
bartjsmit
Hero Member
Posts: 2017
Karma: 194
Re: OpenVPN issues
«
Reply #1 on:
May 22, 2021, 08:44:33 am »
Are you using OpenVPN outside a home setting? You may want to consider purchasing the commercial product which comes with support:
https://openvpn.net/
It is free for two connections which will let you test your issue.
Bart...
Logged
gearboxes
Newbie
Posts: 11
Karma: 0
Re: OpenVPN issues
«
Reply #2 on:
May 23, 2021, 04:40:35 pm »
It is being used for a small company.
I did use the same cert for all the users and allow duplicate connections, but even changing one user to their own cert still have the same issues. I am sending all the logs to a syslog server and it there is no indication of any issues other than the VPN server saying the client connection timed out and it then kicks the user off. After that happens it can take a number of tries to actually get connected where traffic is passed. It is using radius authentication with 2FA.
I will have to look at a commercial offering to test.
Logged
vigilian
Newbie
Posts: 24
Karma: 1
Re: OpenVPN issues
«
Reply #3 on:
May 25, 2021, 07:13:07 am »
could you post your openvpn configuration?
And don't worry about the response time on this forum it's pretty slow since it's a small project after all where pfsense is way bigger.
But it's not related anyway to the fact it was in a VM or if it's a dedicated device. Nowadays, if your using the latest versions of linux hypervisor or even bhyve you should have any problems.
So is this device or VM exposed directly to internet or do you have something in between?
Logged
gearboxes
Newbie
Posts: 11
Karma: 0
Re: OpenVPN issues
«
Reply #4 on:
May 27, 2021, 12:59:34 am »
I was using a VM, but have since purchased a device that shipped with OPNsense and connected it directly to the internet. I also did not restore the config and manually configured the device, but I have the same result.
I can be connected for days, as soon as another user try to connect, it disconnects and try to reconnect (not always however, I would say 60% of the time.)
I can connect from multiple devices and it seems to work fine, but as soon as a different user tries to connect is when the issue occur. Many times it takes 5+ attempts to reconnect after that happens.
Radius authentication is being used that also requires a MFA prompt so connections cannot reestablish automatically.
This is the client config: (not sure if you wanted the server config, I don't know how to export that from command line)
client
dev tun
reneg-sec 0
proto udp
remote <*.*.*.*> 1194
nobind
persist-key
persist-tun
ca MyCA.crt
cert User.crt
key User.key
remote-cert-tls server
cipher AES-256-GCM
auth SHA224
auth-user-pass
auth-nocache
verb 3
reneg-sec 0
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Virtual private networks
»
OpenVPN issues