IPSec VPN seems to work, but no communication?

Started by ibrewster, October 31, 2023, 03:35:14 AM

Previous topic - Next topic
Print
Go Down Pages 1 2
User actions
November 02, 2023, 07:30:49 AM #15
Did you also create and configure one for the server?
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
November 02, 2023, 03:44:41 PM #16
Quote from: Patrick M. Hausen on November 02, 2023, 07:30:49 AM
Did you also create and configure one for the server?
Yeah - I have the server set up with the ACME client, getting a certificate from letsencrypt.org. Though I also set up the local authority (which is how I created the user certificate), and have a server certificate created using that.

I used the official letsencrypt.org certificate for the OpenVPN server.

For what it's worth, I have a dynamic IP address with a dynamic DNS service on OPNsense set up through freedns, and I *can* connect (via port forwarding) to an OpenVPN Access Server instance I set up on a box behind the firewall, so I know OpenVPN works from my client machine to my host network in general, I just need to get all the settings right.

And yes, I did make sure to disable the port forward to that box before trying to set up OpenVPN on the OPNsense box  ;D

I may try looking at the configuration file that box creates, vs the one OPNsense is giving me to see if I can figure out what's different between the two. Not sure if that's worth the effort or not.
November 02, 2023, 04:14:25 PM #17
GOT IT!!!!! Well, for OpenVPN at least. Apparently OpenVPN didn't like me using the letsencrypt.org certificate for the server, but the self-generated certificate for the client. I switched over to using the self-generated certificate for the server, and got a connection - and it even routes traffic correctly!

So not the IPsec connection I was going for, but it works, so I guess that's solved? :)

Thanks everyone who helped me troubleshoot this!
Print
Go Up Pages 1 2
User actions