Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
20.7 Legacy Series
»
OpenVPN multiple server issues
« previous
next »
Print
Pages: [
1
]
Author
Topic: OpenVPN multiple server issues (Read 2874 times)
user1234
Newbie
Posts: 24
Karma: 0
OpenVPN multiple server issues
«
on:
January 05, 2021, 09:26:50 pm »
I have found a strange issue on opnsense 20.7.7_1-amd64 when running multiple OpenVPN servers.
The first server seems to work fine but I am finding the second server (configured the same but with different tunnel subnet and port) users can connect to the VPN but none of their traffic is routed.
I have tested this on two separate opnsense instances and both had strange routing/firewall problems with the second OpenVPN server.
Any ideas why this might happen?
Logged
miruoy
Newbie
Posts: 31
Karma: 2
Re: OpenVPN multiple server issues
«
Reply #1 on:
January 05, 2021, 09:42:00 pm »
did you assign the 2 ovpn interfaces manually and configured fw rules per interface?
Logged
user1234
Newbie
Posts: 24
Karma: 0
Re: OpenVPN multiple server issues
«
Reply #2 on:
January 05, 2021, 10:14:28 pm »
Originally I didn't assign interfaces and I set the firewall rules via the OpenVPN group so both vpn servers had the same firewall rules. Doing this connecting to the first vpn traffic was routed, but connecting to the second vpn no traffic appeared to be routed.
I have since tried assigning interfaces for each and setting firewall rules but this had not helped.
Logged
user1234
Newbie
Posts: 24
Karma: 0
Re: OpenVPN multiple server issues
«
Reply #3 on:
January 05, 2021, 11:38:40 pm »
It has started working again now, seems that a reboot of opnsense is required after assigning the interfaces otherwise I get strange behaviour. Will confirm this is the same on the other opnsense instance tomorrow.
update: correction this was a different problem. Problem still exists.
«
Last Edit: January 06, 2021, 11:48:14 am by user1234
»
Logged
user1234
Newbie
Posts: 24
Karma: 0
Re: OpenVPN multiple server issues
«
Reply #4 on:
January 06, 2021, 11:47:07 am »
It didn't work for long.
I think I have worked out another solution. If I "disable reply-to" on the rules everything works nicely.
An alternative solution seems to be adding the assigned vpn interface to a firewall group and setting the firewall rules here.
Is this a bug or expected?
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
20.7 Legacy Series
»
OpenVPN multiple server issues