Netgate SG-1000 microFirewall

Author Topic: Windows VPN client can't get through pfSense w/o pfSense restart  (Read 221 times)

0 Members and 1 Guest are viewing this topic.

Offline kamiller42

  • Newbie
  • *
  • Posts: 16
  • Karma: +0/-0
    • View Profile
Windows VPN client can't get through pfSense w/o pfSense restart
« on: December 14, 2017, 09:54:01 am »
My Windows VPN clients (PPTP) cannot VPN to an outside network via the Windows VPN client without a pfSense reboot.

Windows 10 goes through the steps of connecting. But when the "Completing Connection" status should appear, it's shows no message and eventually fails. Restarting Windows, and problem persists. Restart pfSense, and problem goes away.

Some info:
* The Windows are VMs on a Linux box.
* Behavior observed in Windows 10 and Windows 7.
* One VM uses Cisco AnyConnect and exhibited no problem using that client. (It's connecting to a different outside network.)

This behavior seems to have started a couple of pfSense versions back.

Offline Finger79

  • Full Member
  • ***
  • Posts: 195
  • Karma: +18/-0
    • View Profile
Re: Windows VPN client can't get through pfSense w/o pfSense restart
« Reply #1 on: December 16, 2017, 05:05:57 am »
Side note:  PPTP was publicly known to be insecure no later than December 2004.  Can I ask why you're still using it in ~2018 instead of a commercial TLS VPN, OpenVPN, or IPsec?

Offline GoldFish

  • Jr. Member
  • **
  • Posts: 54
  • Karma: +2/-0
    • View Profile
Re: Windows VPN client can't get through pfSense w/o pfSense restart
« Reply #2 on: December 16, 2017, 04:33:42 pm »
It could be a service that stops working and once you restart, it restarts the service and VPN works. First off, start using OpenVPN. Also if possible, provide the logs. I had seen similar issues with UBNT where the vpn service itself goes stale and a restart of service fixes this issue.
* pfSense Enthusiast *

Offline edward0488

  • Newbie
  • *
  • Posts: 3
  • Karma: +0/-0
    • View Profile
Re: Windows VPN client can't get through pfSense w/o pfSense restart
« Reply #3 on: February 19, 2018, 04:31:06 am »
I having same problem .

Mine is only 1 user can establish pptp connection once a time. 

Offline Derelict

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 10266
  • Karma: +1177/-313
    • View Profile
Re: Windows VPN client can't get through pfSense w/o pfSense restart
« Reply #4 on: February 19, 2018, 09:23:34 pm »
And again:

https://doc.pfsense.org/index.php/PPTP_VPN

What are you not understanding that PPTP is broken, insecure, should not be used, and there are limitations in the pf firewall that prevent multiple connections from the inside to the same address on the outside?

If PPTP is what you require, you should probably use another firewall.
Las Vegas, Nevada, USA
Use this diagram to describe your issue.
The pfSense Book is now available for just $24.70!
Do Not PM For Help! NO_WAN_EGRESSTM