Re: [pfSense Support] latest snapshot 12-11 and OpenVPN server

Tue, 12 Dec 2006 08:57:37 -0800 

The author of pfSense's freeradius has responded with:

Apparently, that error is triggered when the client is down, not the
server. It makes sense.

Please take this to the forum to continue the conversation.  Fernando
is not subscribed here.

On 12/12/06, Fuchs, Martin <[EMAIL PROTECTED]> wrote:




Hi !

I'm running the latest snapshot 12-11 and have a running OpenVPN Client. It
connects without problems to a pfsense runnning release 1.0.

On this box we're not able to run the latest releases, because OpenVPN
server does not run properly using PSK. The server exits after some time and
never comes back until reboot. This box is 350 km away... so i tested
OpenVPN server on my own box here and:

Client to the other box works well, but i'm not able to connect to my box
with OpenVPN using Certificates, which worked with release 1.0 and 1.0.1.

In the OpenVPN Logs i get NO entry at all, but I added a firewallrule from
WAN-Interface to 1194 UDP.

In the Client GUI I get:

Tue Dec 12 16:51:04 2006 TLS Error: TLS key negotiation failed to occur
within 60 seconds (check your network connectivity)

Tue Dec 12 16:51:04 2006 TLS Error: TLS handshake failed

Tue Dec 12 16:51:04 2006 TCP/UDP: Closing socket

Tue Dec 12 16:51:04 2006 SIGUSR1[soft,tls-error] received, process
restarting

Tue Dec 12 16:51:04 2006 Restart pause, 2 second(s)

Tue Dec 12 16:51:06 2006 Re-using SSL/TLS context

Tue Dec 12 16:51:06 2006 LZO compression initialized

Tue Dec 12 16:51:06 2006 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0
ET:0 EL:0 ]

Tue Dec 12 16:51:06 2006 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135
ET:0 EL:0 AF:3/1 ]

Tue Dec 12 16:51:06 2006 Local Options hash (VER=V4): '41690919'

Tue Dec 12 16:51:06 2006 Expected Remote Options hash (VER=V4): '530fdded'

Tue Dec 12 16:51:06 2006 UDPv4 link local: [undef]

Tue Dec 12 16:51:06 2006 UDPv4 link remote: 82.83.81.xxx:1194

Does anyone got it running ? Or any hints for me where to look for some more
Information on the box itself ?

When degrading the firmware to release 1.0 or 1.0.1 it works again.

Seems to me as if this would have something to do with the BSD 6.2 upgrade
since the snapshots ?

Might that be ?



Regards,

Martin


---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to