Regression #13319
closed
OpenVPN site2site with SSL/TLS doesn't apply the remote network route
0%
Description
I'm testing 2.7 DEV snapshot and I have two OpenVPN site2site client connections.
One (ovpnc1) uses sharedkey and the other (ovpnc2) has been migrated to SSL/TLS.
After the upgrade, the SSL/TLS connects but it doesn't apply the route of the "IPv4 Remote network"
[2.7.0-DEVELOPMENT][root@xxxx]/root: netstat -nr |grep ovpn
10.0.11.0&0xa000b01 10.0.11.1 UGS ovpnc2
10.0.11.1 link#12 UH ovpnc2
10.0.12.1 link#11 UH ovpnc1
192.168.192.0/18 10.0.12.1 UGS ovpnc1
On 2.6.2 the route is correctly applied for both.
As workaround I'm applying the route "192.168.0.0 255.255.128.0 10.0.11.1" on custom options.
Files
Updated by Jim Pingle about 3 years ago
- Status changed from New to Not a Bug
That is most likely a configuration problem. More likely related to how you changed the settings when moving from shared key to SSL/TLS and not a bug with OpenVPN or pfSense.
This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the Netgate Forum or the pfSense Subreddit .
See Reporting Issues with pfSense Software for more information.
Updated by Pietro Cesana about 3 years ago
Jim Pingle wrote in #note-1:
That is most likely a configuration problem. More likely related to how you changed the settings when moving from shared key to SSL/TLS and not a bug with OpenVPN or pfSense.
I didn't change any setting, just upgraded to 2.7 DEV.
The migration to SSL has been previously done on 2.6 succesfully a month ago.
I'll post on forum but I cannot see why it could be a config issue.