Jump to content
Not connected, Your IP: 3.238.130.97
mcana77

PFsense OpenVPN is no longer connecting

Recommended Posts

Hello All,

So I was browsing this morning as I normally do on a Saturday morning and suddenly, no connectivity.

I have a pfSense FW (Ver 2.5.0-Release) that is always on and connected to AirVPN for my local subnet. Logging into my pfSense showed that indeed OpenVPN was no longer connected and I cannot seem to connect. I noted the line that stated "write UDPv4: No route to host (code=65)" and I am wondering what may have changed on the AirVPN servers or am I doing something wrong?

Any help would be greatly appreciated.

I setup the pfsense using this guide -> (whoever you are sir or madam, you rock!)
Apr 24 16:02:42    openvpn    69767    write UDPv4: No route to host (code=65)
Apr 24 16:02:40    openvpn    69767    write UDPv4: No route to host (code=65)
Apr 24 16:02:40    openvpn    69767    UDPv4 link remote: [AF_INET]64.42.179.58:443
Apr 24 16:02:40    openvpn    69767    UDPv4 link local (bound): [AF_INET]192.168.1.17:0
Apr 24 16:02:40    openvpn    69767    Socket Buffers: R=[42080->42080] S=[57344->57344]
Apr 24 16:02:40    openvpn    69767    TCP/UDP: Preserving recently used remote address: [AF_INET]64.42.179.58:443
Apr 24 16:02:40    openvpn    69767    Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 0,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-server'
Apr 24 16:02:40    openvpn    69767    Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-client'
Apr 24 16:02:40    openvpn    69767    Data Channel MTU parms [ L:1622 D:1450 EF:122 EB:406 ET:0 EL:3 ]
Apr 24 16:02:40    openvpn    69767    Control Channel MTU parms [ L:1622 D:1184 EF:66 EB:0 ET:0 EL:3 ]
Apr 24 16:02:40    openvpn    69767    Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Apr 24 16:02:40    openvpn    69767    Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Apr 24 16:02:40    openvpn    69767    WARNING: experimental option --capath /var/etc/openvpn/client1/ca
Apr 24 16:02:40    openvpn    69767    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Apr 24 16:02:40    openvpn    69767    mlockall call succeeded
Apr 24 16:02:40    openvpn    69767    MANAGEMENT: unix domain socket listening on /var/etc/openvpn/client1/sock
Apr 24 16:02:40    openvpn    69452    library versions: OpenSSL 1.1.1i-freebsd 8 Dec 2020, LZO 2.10
Apr 24 16:02:40    openvpn    69452    OpenVPN 2.5.0 amd64-portbld-freebsd12.2 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Feb 5 2021
Apr 24 16:02:40    openvpn    69452    auth_user_pass_file = '/var/etc/openvpn/client1/up'

 

Share this post


Link to post

this is your problem

auth SHA1

go ahaed with the new how to
a few option are different to the old HowTo it is a few years old.


https://nguvu.org/pfsense/pfsense-baseline-setup/
 

Share this post


Link to post

Thanks Wolke68. I actually have a backup unit that is flashed and ready to go in case I have an issue, so I went ahead wiped it and put 2.5.1 on it. I'm in the middle of configuring that one now. It is a little more complicated than the first version I followed several years ago and I don't totally understand VLAN routing but I am learning. Still not connecting even though I'm well past the OpenVPN configuration but I will keep going and hopefully get this ironed out sometime this week.

Appreciate your response!

 

Screenshot at 2021-04-26 07-17-20.png

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image

×
×
  • Create New...