I cannot get either .ovpn file to work with pfsense or an Advanced Tomato router. Both .ovpn files work great in several linux machines when importing a custom file(.ovpn config file)
My pfsense and Tomato router are seeming working normally as both expressvpn and mullvad files work properly when testing. The self hosted cloud .ovpn files do not work. I have tried to play with settings and no luck connecting.
Has someone got a cloud hosted OpenVPN file to work in a router or pfsense?
does the openvpn session start at all? or is it failing on that? if its working i whould not push gw but do all the routes your self. just figured out mine. also on you vpn do you have all your masqurades and firewall configured?
use tcpdump -ni tun0 on server side to see what u are gettingback
also check your /etc/ufw/before.rules
Forward traffic from OpenVPN through eth0.
-A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE
tell ufw to process the lines
COMMIT
Don’t delete these required lines, otherwise there will be errors
*filter
-A ufw-before-input -i tun0 -j ACCEPT
-A ufw-before-output -i tun0 -j ACCEPT
-A ufw-before-forward -s 10.8.0.0/24 -j ACCEPT
-A ufw-before-forward -d 10.8.0.0/24 -j ACCEPT
;proto tcp
proto udp
dev tun
ca ca.crt
cert our.crt
key our.key # This file should be kept secret
openssl dhparam -out dh2048.pem 2048
dh dh.pem
topology subnet
server 1.2.3.4 255.255.255.0
keepalive 10 120
tls-auth ta.key 0 # This file is secret
cipher AES-256-CBC
auth SHA256
pretty much this works please note i did not include all teh defaults. on pfsence just specified the same informaioin and keys and it connects no issue … plesae note ports and ipaddress you need to change to what you want,
once that is configured you need to configure routeing on pfsence
create a interface and a gw and route traphic trought it
Forgot to mention in original post that I am Using UDP on port 443 as I find this is a good way to not get blocked on websites. Works in a linux machine but not pfsese
Tom, what logs should I be looking for/to post here to give you more information? when setting up VPN says “up” however loosing packets and no internet. on the main pfsense page it shows VPN up but no gateway
raslin, Not 100% following your first post, sorry I am new at self hosting VPN’s/ Below is my config file and have put it into pfsense. this is what is above the certificates. putting “resolv-retry infinite, ignore-unknown-option block-outside-dns, block-outside-dns” into custom options.
client
dev tun
proto udp
remote 172.105.xx.xxx 443
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
auth SHA512
cipher AES-256-CBC
ignore-unknown-option block-outside-dns
block-outside-dns
verb 3
So after using my “brain” and reading the logs showing bad compression, i turned the defauild compression selection to “Open VPN default” and now gateway is up and I have internet.
Thanks for pointing me to the logs. Newer to networking and did not even think to look at the logs