[SOLVED] OpenVPN Broken

Started by Noctur, January 30, 2018, 07:26:38 PM

Previous topic - Next topic
Print
Go Down Pages1 2 3 4
User actions
January 30, 2018, 07:26:38 PM Last Edit: February 06, 2018, 08:04:30 AM by franco
Updated yesterday, tried to enable several prior OpenVPN clients and while they would indicate connected, no data comes through. Every attempted website returns not found. Note that connecting with TOR browser is successful.

Anyone else seen this?

How can I safely downgrade to the 17.7.12_1 version I was on until this gets sorted out? TIA.
overkill: Dell SFF i5, 16gb, 120gb SSD, 4x gb NICs
OPNsense 21.1.x
January 30, 2018, 07:27:38 PM #1
I'm using OpenVPN and it seems to work fine.

Are you passing any traffic through once you connect? Can you ping your DNS that you have setup?
January 30, 2018, 07:39:57 PM #2
Thanks for the prompt reply,...

With a client profile enabled and from SSH to the console - yes pinged with 3 responses and 0 loss.

But, I had to disable the profile to respond to this question via Firefox browser. Browser was updated to 58.0.1 very recently.
overkill: Dell SFF i5, 16gb, 120gb SSD, 4x gb NICs
OPNsense 21.1.x
January 30, 2018, 07:52:26 PM #3
Attempting to downgrade with

# opnsense-revert -r 17.7.12 opnsense
or
# opnsense-revert -r 17.7.12_1 opnsense

results in

Fetching opnsense.txz: .. failed

Recommendations? TIA
overkill: Dell SFF i5, 16gb, 120gb SSD, 4x gb NICs
OPNsense 21.1.x
January 30, 2018, 08:34:10 PM #4
I'm having the same issue. I did a clean install of OPNsense 18.1 last night. In client mode, I could connect to PIA's VPN server (AES-256-CBC & SHA256), but could not route traffic. I troubleshot for about 10 minutes, then ran out of time. I'll do more troubleshooting tonight when I get home.
January 30, 2018, 09:07:23 PM #5
Similar... Nord VPN here, tried several profiles that worked prior to the upgrade, checked server status, created 2 new profiles to new servers. All the same - get connection up indication, can't make browser connection with Firefox or IE.
Don't have time to troubleshoot more atm. So was trying to revert but that's not working.

Anyone have recommendations on how to downgrade back to 17.7.12? TIA
overkill: Dell SFF i5, 16gb, 120gb SSD, 4x gb NICs
OPNsense 21.1.x
January 30, 2018, 09:33:25 PM #6
I use PIA and mine is working, but I'm not sure what difference with your network setup compared to mine is I'm afraid.
January 30, 2018, 11:31:17 PM #7
I use OpenVPN to connect it to my home network and ExpressVPN as well for outbound traffic. Both are working without issue.
January 31, 2018, 04:09:07 AM #8 Last Edit: January 31, 2018, 04:13:48 AM by Noctur
Thanks for the comments, all. Looks like its something intermittent.

Any recommendations on how to downgrade? the command

# opnsense-revert

isn't working. Is there a different command between major revs? TIA
overkill: Dell SFF i5, 16gb, 120gb SSD, 4x gb NICs
OPNsense 21.1.x
January 31, 2018, 05:39:32 AM #9
Just updated mine to 8.1, I run a full network OpenVPN tunnel with alias bypasses for platforms like Netflix and Amazon Video. Upon updating I'm unable to connect to a number of sites like opnsense.org, privateinternetaccess.com, stackoverflow.com, Reddit, the list goes on but there's also a ton of sites that work too...I ended up restoring from backup with no positive outcome. Attributing this to OpenVPN as well because once disabled the network connects perfectly fine.
January 31, 2018, 08:18:57 AM #10
Last one sounds like an MTU issue?

opnsense-revert isn't working because you can't cross major version borders easily. It's dangerous to downgrade, in fact I tried but pkg is refusing to downgrade in the sequence we try to upgrade after changing the version back to 17.7. FreeBSD likes to keep pkg incompatible between 11.x releases. Sorry.

Your best bet is to do a 17.7.5 image configuration import + guided install to replace your system inline while retaining the configuration.


Cheers,
Franco
January 31, 2018, 04:20:12 PM #11
Thank you for confirming the major rev downgrade restriction. I had pretty much boiled it down to 2 choices - install 17.7.5 (the last available on download) and restore settings or clean install 18.1 and restore settings. I'll try the 18.1/restore first, and if it doesn't resolve I'll go with the 17.7.5/restore.
overkill: Dell SFF i5, 16gb, 120gb SSD, 4x gb NICs
OPNsense 21.1.x
February 01, 2018, 01:50:51 AM #12
Quick update... reinstalled 17.7.5, updated to 17.7.12_1, restored settings file. Everything working as expected. One note, I performed a factory reset on 18.1_1 and then restored setting file - same issue with OpenVPN. Went the reinstall route.
overkill: Dell SFF i5, 16gb, 120gb SSD, 4x gb NICs
OPNsense 21.1.x
February 01, 2018, 03:09:12 AM #13
That's such a bummer. I wonder what's causing the issue...Should have know not to upgrade so close to the release date. Hoping a hotfix comes around so I can retain my OpenVPN functionality because not using one skeeves me out a bit...
February 01, 2018, 07:39:30 AM #14
Could you please post, for bot working and non working the generated config file for openvpn?
That way we could determine if there is a difference in settings causing this. Thx!
Print
Go Up Pages1 2 3 4
User actions