Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
19.1 Legacy Series
»
OpenVPN and CARP not Working
« previous
next »
Print
Pages: [
1
]
Author
Topic: OpenVPN and CARP not Working (Read 5650 times)
lau.xiong
Newbie
Posts: 5
Karma: 0
OpenVPN and CARP not Working
«
on:
March 28, 2019, 03:17:39 pm »
I cannot get OpenVPN working on my OPNsense cluster.
Please review the configuration attachments.
I can ping the external virtual IP (3.20.150.240), but I cannot get OpenVPN to work on any of the IPs:
3.20.150.240 (VIP)
3.20.150.243 (First OPNsense Host)
3.20.150.244 (Second OPNsense Host)
Thanks,
Lau
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: OpenVPN and CARP not Working
«
Reply #1 on:
March 28, 2019, 04:42:50 pm »
Where is the screenshot of your OpenVPN server config?
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
lau.xiong
Newbie
Posts: 5
Karma: 0
Re: OpenVPN and CARP not Working
«
Reply #2 on:
March 28, 2019, 06:52:39 pm »
I do not believe it is an issue with VPN configuration as I can connect fine if I'm not using CARP.
Anyway, here is the OpenVPN server configuration.
I am missing a NAT/Firewall rule somewhere, but I am too inexperience to know where.
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: OpenVPN and CARP not Working
«
Reply #3 on:
March 28, 2019, 10:55:18 pm »
If you use carp, Open VPN Interface has to be a carp Interface
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
lau.xiong
Newbie
Posts: 5
Karma: 0
Re: OpenVPN and CARP not Working
«
Reply #4 on:
March 29, 2019, 03:03:32 pm »
This is my problem. The CARP virtual interface reponds to pings, but it will not allow OpenVPN to work--possibly I am missing some NAT/firewall rule.
vpn1 - WAN 3.20.150.243
vpn2 - WAN 3.20.150.244
CARP VIP - 3.20.150.240
All IPs respond to pings, but OpenVPN does not work on either of these IPs. If I break CARP, OpenVPN works find on 3.20.150.243 and 3.20.150.244 and 3.20.150.240 no longer responds to pings.
This indicates that I have the CARP set up properly because they do sync up.
I am hoping that someone can look at my NAT configuration and tell me what I am missing.
Thanks,
Chris
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: OpenVPN and CARP not Working
«
Reply #5 on:
March 29, 2019, 04:11:39 pm »
You can't use the CARP IP when you have set interface to any in server config.
Select your CARP IP there and it'll work
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
lau.xiong
Newbie
Posts: 5
Karma: 0
Re: OpenVPN and CARP not Working
«
Reply #6 on:
March 29, 2019, 04:24:05 pm »
@ minugmail, please excuse this blockhead of mine.
I assume you meant that I need to do something like the attached screenshot?
«
Last Edit: March 29, 2019, 04:29:39 pm by lau.xiong
»
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: OpenVPN and CARP not Working
«
Reply #7 on:
March 29, 2019, 05:00:47 pm »
Yep, this works. Set up yesterday for a customer
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
19.1 Legacy Series
»
OpenVPN and CARP not Working