Would you believe it - we have another problem, with our existing pfSense box (ie unrelated to all my other recent questions with the new dual firewalls).
OpenVPN is configured and working - except that it gives the *same IP* to every client. Yes, we're using unique certs and keys (via pkcs12), as can be easily verified by exporting and looking at them! So it's not a 'duplicate-cn' problem.
I've used OpenVPN before, in other environments, without any problems. But while this one is working for any single client, more than that and it all falls over. Do I have to go through a manual mapping of CNs to IPs? Can I get DHCP to assign addresses, bypassing OpenVPN's method?
Cheers
Alastair
I never heard back on these two questions:
is the ovpn address pool on a different subnet from all of the other subnets? ie, your lan subnet isn't 192.168.3.0/24 is it?
is DHCP in pfsense disabled for the openvpn interface? This is how i've configured my machines- it seems that openvpn hands out ips without the need for a dhcp server
