RE: [pfSense Support] OpenVPN

[Nelson Papel]

On the pfsense box running as the openvpn server, I setup dynamic DNS first.  In the OpenVPN server settings, I used the TCP protocol, port 1194, for address pool I just picked the next highest 192.168.x.x subnet, so in my case 192.168.12.0/24.  Local network I left blank, remote network is the LAN address of the client OpenVPN box, so I entered 192.168.9.0/24.  I used BF-CBC (128-bit) cryptography, shared key authentication; I entered a shared key, and left everything else blank.  I also created a NAT rule for the WAN, to allow TCP1194 to my ‘server’ box LAN IP.   On the pfsense running as the openvpn client, on the OpenVPN client settings I set the TCP protocol, the server address I used the DynDNS name of my VPN server, port 1194, the interface I{ is the same as the address pool on the server, so 192.168.12.0/24.  The remote network I used was the LAN on the other end, so 192.168.0.0/24 in my case.  Proxy host and port I left blank, and I copied all the cryptography info from the server to the client (the shared key and auth method).  I did not create a firewall rule on the client box.   Nelson Papel   From: Fuchs, Martin [mailto:[EMAIL PROTECTED] Sent: September 23, 2006 7:19 To: support@pfsense.com Subject: AW: [pfSense Support] OpenVPN   can you tell me how you got it running ?   Von: Nelson Papel [mailto:[EMAIL PROTECTED] Gesendet: Freitag, 22. September 2006 20:09 An: support@pfsense.com Betreff: Re: [pfSense Support] OpenVPN I use OpenVPN between two boxes and it works flawlessly.  Both boxes are on the 09-18 snapshot, both connect to the WAN with DSL connections and both have dynamic IP's and are using shared key authentication and LZO compression.  When the connection goes down (usually at the far end, fault of the POTS wiring, not pfsense), the connection comes up right away as soon as the modem syncs.   Nelson ----- Original Message ----- From: Scott Ullrich To: support @ pfsense. com Sent: Friday, September 22, 2006 13:39 Subject: [pfSense Support] OpenVPN   Who out there actually uses OpenVPN and it works for them? Please either respond here and describe your setup or reply privately to me. We have a influx of OpenVPN problem reports and I am starting to wonder if it works correctly at all. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]