OPNSense - Setting up OpenVPN Remote Access SSL/TLS + User Auth Legacy
ฝัง
- เผยแพร่เมื่อ 20 ต.ค. 2024
- This tutorial aims to provide a comprehensive guide on setting up OpenVPN Remote Access with SSL/TLS and User Authentication. By following the steps outlined in this tutorial, users will be able to establish a secure and reliable remote access connection to their OpenVPN server. The tutorial will cover the necessary steps to configure SSL/TLS security and user authentication to ensure that the connection remains secure.
➡️ Google Fi Wireless Refferal Code: DV6MHF
➡️ OpenVPN Instance - Remote Access: • OPNSense - OpenVPN Ins...
➡️ Step-by-step instruction: bit.ly/3EZ2ngv
➡️ Should you find this tutorial helpful, we kindly request that you consider supporting our channel by subscribing to our TH-cam channel or using the affiliated links and URL shortener links provided below. Through your purchase using any of the given links, we will receive a small commission, which we will use to expand our channel and enhance our services. We appreciate your support, and we remain committed to providing you with quality content.
⚠️ FTC Disclaimersysadmin102.co....
♡ Ways to support: sysadmin102.co...
🌐 Website: sysadmin102.com/
✉️ Business Inquiry: service@sysadmin102.com
© SYSADMIN102™ LLC
OpenVPN Instance - Remote Access (SSL/TLS + User Auth): th-cam.com/video/3A5eIYs6adk/w-d-xo.html
Hi doc, first of all, thank you for the effort of bringing this type of content.
I have a question, what is the difference between this video and the most current opnvpn video on your channel?
"I don't think there's much difference between them, in my opinion. OPNSense is expected to remove the Legacy option eventually. From my understanding, the update mostly concerns the GUI (front end), rather than the back end. If you watch the other video, you'll notice that the setup is similar, but the panels are not the same."
Finally a tutorial that works! I have bin trying to make this work for months now and finally it worked. Thanks for this!😃
You’re welcome! I’m glad that it works for you now!
Thanks for doing this excellent video. Following this allowed me to get it running first time without any hitches.
One little note. The version on opensense is old. Some of the options are missing or lables are updated with new one. We need new video with lattes opensense version.
Will release new version soon
Thank you! Its great to see Opnsense tutorials. Switched from Pfsense and been happy so far.
I have used pfsense for years, but decided to switch and I’m happy with it so far.
Thank you! I appreciate all your videos.
Well, thank you for your support!
Thank you for the video, was clear and to the point, I have an issue with DNS, my hostname is on Cloudflare, but when I have my public IP proxied, I can't connect, is there a way round this without removing the proxy status?
That’s how proxy supposed to work. If you enabled proxy it will point to Cloudflare IP instead of your public IP.
Thanks, I realised after sending the comment aha @@sysadmin102
Hey, in the last release isn't working, what version of OPNsense are you using? regards
I can’t recall, but you can check the change log. As the name suggested Legacy, it means that OPNSense will eventually remove it. I have a similar tutorial for the newest package.
@@sysadmin102 with 24.1 ok, 24.7 have bug
One note! CN must be DDSN full host name due to certificate CN=name option.
This will not work if the certificate are part of OS authority. With external files or one file merge all option will do, but openvpn have config to take the certificate key from OS Certificate Authority.
It works for me!
Please help me, if i want to connect from my windows host to opnsense server at vmware settings should i have NAT or bridged interface? With this set NAT I am not able to ping from my windows to the opnsense server.
I’m not sure. Don’t have it setup on VMware. However, you should try bridged interface.
Could you do a setup using the Instances option in OpenVPN?
Until OPNsense completely remove the rest of the menu options under OpenVPN. I wouldn’t make a new tutorial just for Instances. It’s basically a combination of multiple menu sections into one.
the only i got confused at is the DDNS, where the heck am i supposed to do that.
Well, that depends on what kind of domain providers you use, but the general steps should be the same. My channel has a tutorial on it.
Where do i see my home server on opnsense?
VPN Server should be in your VPN Tab
@@sysadmin102 I guess I mean, how do o find out my home servers for my ddns
what? I don't understand the question. Your DDNS supposed to point to your public IP address.
Hello, hello, I followed all the steps in the video but I get these errors:
openvpn server1 (ip) :41928 TLS Error: Unroutable control packet received from [AF_INET] (ip) :41928 (if=3 op=P_CONTROL V1)
Can you help me?
Check TLS and encryption settings
One note. Why wizard. Do manual. Add rules manually.
Ok. You can do it manually if that’s what you want. I just simply make things simple and actually works.
Hi please help:
Sun Jan 14 18:40:50 2024 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sun Jan 14 18:40:50 2024 TLS Error: TLS handshake failed
Sun Jan 14 18:40:50 2024 SIGUSR1[soft,tls-error] received, process restarting
Sun Jan 14 18:40:51 2024 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.1.10:1194
Sun Jan 14 18:40:51 2024 ovpn-dco device [OpenVPN Data Channel Offload] opened
Sun Jan 14 18:40:51 2024 UDP link local (bound): [AF_INET][undef]:0
Sun Jan 14 18:40:51 2024 UDP link remote: [AF_INET]192.168.1.10:1194
I don't really have a DNS, so not sure what to put for hostnaame but it's filled in already which is 192.168.1.10
that's actually my wan ip that it filled in.
my tunnel is same ip as yours and my lan is 192.168.10.1/24. this opnsense box is behind a router so I'm not sure but I'm trying to do all this so I can remotely vpn into my opnsense box so I don't have to keep plugging an ethernet cable into it and logging the same lan ip like I do everytime. thanks
edit: this is with openVPN 2.6.8 latest one.
do you have a discord so I can chat to?
hostname will be your DDNS. Like I said from the beginning of the tutorial. It's required DDNS or if you have a Static Public IP, then you can use that IP.
Great! it is now connected. however, whenever I put in the IP 10.5.25.6 which is one ip it gave me, it doesn't connect me to my opnsense router gui? I feel like I'm missing something but I can ping to this address.
also one more thing, here's the log:
Tue Jan 16 19:57:53 2024 ROUTE: route addition failed using service: The parameter is incorrect. [status=87 if_index=11]
Tue Jan 16 19:57:53 2024 Initialization Sequence Completed
the first line on 19:57:53 was in red? how bad is that.
EDIT: now whenever I ping this address, it deconnects and it now gives same issue as I had first time with this: Tue Jan 16 20:12:08 2024 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Tue Jan 16 20:12:08 2024 TLS Error: TLS handshake failed.
sorry I'm all new to this.
@@sysadmin102