OpenVPN both running and not running?

Started by danb35, August 05, 2020, 01:40:46 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 05, 2020, 01:40:46 PM Last Edit: August 05, 2020, 02:26:36 PM by danb35
I've been having a few problems with OPNsense since I installed it, that I haven't been able to sort out.  My problem with ntpd (https://forum.opnsense.org/index.php?topic=18253.0) seems to have stumped the experts, so here's another one: OpenVPN.

I've set up an OpenVPN server on my OPNsense box  I have two remote computers connected to that server full-time, on the VPN subnet.  I know they're connected, because they're able to run backups to my FreeNAS server on my LAN every day.  But both the services widget in the dashboard, and the OpenVPN widget, say the service isn't running--see the attachments for screen shots.

A little stumped here on what to be checking--any thoughts?

Edit: The process appears to be running:
Code Select

root@opnsense:~ # ps aux | grep vpn
root     6744   5.5  0.2 1066500  7996  -  Rs   Fri13    509:10.81 /usr/local/sbin/openvpn --config /var/etc/openvpn/server1.conf
root@opnsense:~ #

Not sure if there's anything out of the ordinary in the log file:
Code Select

root@opnsense:/var/log # tail openvpn.log
Aug  5 06:46:36 opnsense openvpn[14976]: OpenVPN 2.4.9 amd64-portbld-freebsd12.1 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Jul 28 2020
Aug  5 06:46:36 opnsense openvpn[14976]: library versions: OpenSSL 1.1.1g  21 Apr 2020, LZO 2.10
Aug  5 06:46:36 opnsense openvpn[91988]: MANAGEMENT: unix domain socket listening on /var/etc/openvpn/server1.sock
Aug  5 06:46:36 opnsense openvpn[91988]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Aug  5 06:46:36 opnsense openvpn[91988]: Diffie-Hellman initialized with 4096 bit key
Aug  5 06:46:36 opnsense openvpn[91988]: Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Aug  5 06:46:36 opnsense openvpn[91988]: Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Aug  5 06:46:36 opnsense openvpn[91988]: ROUTE_GATEWAY 96.68.219.30/255.255.255.252 IFACE=igb0 HWADDR=00:08:a2:0a:d5:04
Aug  5 06:46:36 opnsense openvpn[91988]: TUN/TAP device ovpns1 exists previously, keep at program end
Aug  5 06:46:36 opnsense openvpn[91988]: Cannot open TUN/TAP dev /dev/tuCLOG? ??root@opnsense:/var/log #


August 07, 2020, 12:18:19 PM #1
Anyone?
August 07, 2020, 05:45:05 PM #2
I've observed this issue related to a PPPoE WAN connection with IPv6 enabled? Are you using PPPoE too?
August 07, 2020, 06:04:30 PM #3
Thanks for the reply.  No, WAN is a simple static IP; I'm not using PPPoE at all.
August 11, 2020, 09:23:03 PM #4
Any ideas on this?  It's somewhat disconcerting that my firewall doesn't seem to know that its VPN service is running, much less that it has two clients connected.
Print
Go Up Pages1
User actions