Netgate SG-1000 microFirewall

Author Topic: Kill OVPN client connection  (Read 625 times)

0 Members and 1 Guest are viewing this topic.

Offline Gil

  • Full Member
  • ***
  • Posts: 106
  • Karma: +3/-0
    • View Profile
Re: Kill OVPN client connection
« Reply #15 on: December 14, 2017, 03:50:59 pm »
OK, so I have done as suggested:

Via ssh:

nc -w 20 -U /var/etc/openvpn/server2.sock
kill xxx (cn)

Result:
SUCCESS: common name 'xxx' found, 1 client (s) killed

That functions, but (of course) - still not via the web interface.

I have tested the web interface (kill openvpn) on my central server and also on client machines (SG-1000 & APU)
and all exhibit the same error message.





11 cheers for binary

Offline Gil

  • Full Member
  • ***
  • Posts: 106
  • Karma: +3/-0
    • View Profile
Re: Kill OVPN client connection
« Reply #16 on: December 17, 2017, 02:47:57 pm »
I am still at a loss as to why I get an error message from the gui.
Are there any tests I should run, or config changes to further investigate?
11 cheers for binary

Offline peter808

  • Jr. Member
  • **
  • Posts: 87
  • Karma: +1/-2
    • View Profile
Re: Kill OVPN client connection
« Reply #17 on: December 19, 2017, 06:59:56 am »
I get an error:

An error occurred. (-1)

when I attempt to kill an OpenVPN client connection on my APU server box status screen.
This never used to happen prior to 2.4.0 upgrade.

Same here on 2.4.2. Also no errors in logs.

Tried with Chrome, Safari and Edge via Web-gui.

Offline Pippin

  • Full Member
  • ***
  • Posts: 247
  • Karma: +22/-3
    • View Profile
Re: Kill OVPN client connection
« Reply #18 on: December 19, 2017, 09:04:26 am »
OK, so I have done as suggested:

Via ssh:

nc -w 20 -U /var/etc/openvpn/server2.sock
kill xxx (cn)

Result:
SUCCESS: common name 'xxx' found, 1 client (s) killed

That functions, but (of course) - still not via the web interface.

I have tested the web interface (kill openvpn) on my central server and also on client machines (SG-1000 & APU)
and all exhibit the same error message.
From the result I would think it`s not an OpenVPN issue...
2.3.2-RELEASE (amd64) - GB N3150N-D3V
"There must be someone with intelligence in the party"
"Well, that rules you out Pippin"

Offline Gil

  • Full Member
  • ***
  • Posts: 106
  • Karma: +3/-0
    • View Profile
Re: Kill OVPN client connection
« Reply #19 on: December 27, 2017, 10:19:11 pm »
Thanks Pippin.
Generic googling tells me (-1) errors often relate to hardware.
My errors occur on all my devices APU and SG-1000.

11 cheers for binary

Offline Gil

  • Full Member
  • ***
  • Posts: 106
  • Karma: +3/-0
    • View Profile
Re: Kill OVPN client connection
« Reply #20 on: January 02, 2018, 06:02:03 am »
I should also mention; all my devices run a bridge for a tap openvpn.
peter808 : Are you similar?

11 cheers for binary

Offline Gil

  • Full Member
  • ***
  • Posts: 106
  • Karma: +3/-0
    • View Profile
Re: Kill OVPN client connection
« Reply #21 on: January 08, 2018, 07:17:12 pm »
I have an OpenWRT OpenVPN connection that also gives the same error on my pfSense Server
11 cheers for binary

Offline GoldFish

  • Jr. Member
  • **
  • Posts: 44
  • Karma: +2/-0
    • View Profile
Re: Kill OVPN client connection
« Reply #22 on: January 09, 2018, 09:57:07 am »

Same here on 2.4.2. Also no errors in logs.

Tried with Chrome, Safari and Edge via Web-gui.

Same here
* pfSense Enthusiast *

Offline Steve_B

  • Global Moderator
  • Sr. Member
  • *****
  • Posts: 398
  • Karma: +115/-0
    • View Profile
Re: Kill OVPN client connection
« Reply #23 on: January 09, 2018, 10:11:20 am »
The "Error occurred" pop-up on the dashboard is caused by a race condition where the widget is requesting status from a resource that no longer exists. Annoying no doubt but it should not affect functionality.

Fixed in the next snapshot
« Last Edit: January 09, 2018, 11:06:11 am by Steve_B »

Offline Gil

  • Full Member
  • ***
  • Posts: 106
  • Karma: +3/-0
    • View Profile
Re: Kill OVPN client connection
« Reply #24 on: January 09, 2018, 02:43:06 pm »
Thanks Steve_B .
I take it that the fix will not only stop the error popup, but also execute the kill OpenVPN command?
11 cheers for binary

Offline Gil

  • Full Member
  • ***
  • Posts: 106
  • Karma: +3/-0
    • View Profile
Re: Kill OVPN client connection
« Reply #25 on: January 09, 2018, 07:57:50 pm »
Small clip of the GUI behaviour
11 cheers for binary