Jump to content
Not connected, Your IP: 3.19.213.242
AirVPN
drneba

ANSWERED I've tried everything and I don't know, Open port, pfSense

By drneba, 08/17/2024 in Troubleshooting and Problems

Recommended Posts

drneba    0

drneba
Posted 08/17/2024

I followed this guide https://nguvu.org/pfsense/pfsense-port-forward/
My configuration: pfSense + Unraid with qBittorrent container
Everything works for me, AirVPN connects to the server, Unraid server gets the VPN IP address, but when I check if the port is open I get an error.
image.thumb.png.0fbeabbd8540a8325d2b31bc3236ad80.png

Firewall / Rules / WAN
image.thumb.png.62818884a5f7526a096749681a4abdf1.png

Firewall / Rules / AIR_SRB
image.thumb.png.114b3a2a0800f375d480e4f5582f5550.png

TorrentHost - IP address of Unraid server
TorrentInboundPort - port I got from the AirVPN site

Port Forward
image.thumb.png.ca496b81ae4cdd503a6831f8f044e670.png

image.thumb.png.53c11f01a65796afe86a8e20f955c70d.png

image.png.28fbbb11be9cfb63a7be846ac04104f3.png

Any help would be great, I'm really tired


 

Share this post

Link to post

go558a83nk    371

go558a83nk
Posted 08/18/2024

Everything looks correct.  The two things I wonder are:  1) are the external and internal ports matching for the port forward you created with AirVPN?  By default they do match but just making sure.  2) Have you reconnected the VPN connection since making the port forward rule?  Often that's required.

Share this post

Link to post

drneba    0

drneba
Posted 08/18/2024
  On 8/18/2024 at 1:04 PM, go558a83nk said:

1) are the external and internal ports matching for the port forward you created with AirVPN?  By default they do match but just making sure.

What exactly do you mean, I created an alias with the port assigned to me on AirVPN.
  On 8/18/2024 at 1:04 PM, go558a83nk said:

2) Have you reconnected the VPN connection since making the port forward rule?  Often that's required.

Did you mean to do a reconnect here?
image.thumb.png.cb5762058a42853efc9a33cce5bda1cb.png

 

Share this post

Link to post

invok3r    3

invok3r
Posted 08/21/2024

I dont know if its just openVPN things or not but i'd suggest (if you can) to try using wireguard. Im sure the ports will work and be open. 

Share this post

Link to post

drneba    0

drneba
Posted 08/22/2024
  On 8/21/2024 at 12:18 AM, invok3r said:

I dont know if its just openVPN things or not but i'd suggest (if you can) to try using wireguard. Im sure the ports will work and be open. 

Thanks, that's what I was thinking of trying. I have to make some time for that

Share this post

Link to post

drneba    0

drneba
Posted 08/24/2024
  On 8/21/2024 at 12:18 AM, invok3r said:

I dont know if its just openVPN things or not but i'd suggest (if you can) to try using wireguard. Im sure the ports will work and be open. 


Unfortunately it doesn't work with Wire Guard either. Obviously I don't know. I'm so tired of everything.

Share this post

Link to post

drneba    0

drneba
Posted 08/24/2024

I found this thread, but it's locked, Could someone please explain this to me
"The problem was an any/any rule in the Wireguard unasigned tunnel firewall rule list. Even though the AirVPN WG interface was assigned, group rules are evaluated first..."

 

Share this post

Link to post

go558a83nk    371

go558a83nk
Posted 08/24/2024
  On 8/24/2024 at 7:03 PM, drneba said:

I found this thread, but it's locked, Could someone please explain this to me
"The problem was an any/any rule in the Wireguard unasigned tunnel firewall rule list. Even though the AirVPN WG interface was assigned, group rules are evaluated first..."

 

so they're saying they had an any/any rule in their firewall/rules/openvpn or /firewall/rules/wireguard group which overrode the automatically created rule (when you create the port forward) in firewall/rules/individual_interface

Share this post

Link to post

go558a83nk    371

go558a83nk
Posted 08/24/2024
  On 8/24/2024 at 7:28 PM, drneba said:

So both of those rules should be empty.
It's the same with me and it still doesn't work


yeah, for me the group rules section is empty.  but the individual interface gets auto created by using the associated filter rule option in the port forward.

your problem may be due to a firewall on the unraid box and/or the qbit container?

Share this post

Link to post

drneba    0

drneba
Posted 08/24/2024

when a port is opened on pfsense, does say yougetsignal.com have to show that the port is open, regardless of what is after pfsense

Share this post

Link to post

go558a83nk    371

go558a83nk
Posted 08/25/2024
  On 8/24/2024 at 7:49 PM, drneba said:

when a port is opened on pfsense, does say yougetsignal.com have to show that the port is open, regardless of what is after pfsense


Neither AirVPN's port open test nor yougetsignal's port open test will show "green" unless your whole chain is working and your server (qbit) is listening and responds to the query.  This is important.  Your server must be up and responding.  So if things seem correct on pfsense then then problem is somewhere else, that's my thought.
drneba reacted to this

Share this post

Link to post

drneba    0

drneba
Posted 08/25/2024

That's right, you're 100% right.
The entire chain must be active and set to an open port. Everything works for me on a Windows machine and finally it tells me that the port is open. It is important to me that I have done the pfSense settings correctly. Now I will solve Unraid. A thousand times thanks.

Share this post

Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go To Topic Listing
×
×
  • Create New...
We do NOT use cookies to profile or track users.I understandMore information