pfSense Support Subscription

Author Topic: pfsense and openvpn for new users tutorial <-- with Site-To-Site now  (Read 51645 times)

0 Members and 1 Guest are viewing this topic.

Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
  • Karma: +0/-0
    • View Profile
cheers,

i have written a tutorial for users new to pfsense and OpenVPN, since
i can't attach it here, you may download it from my homepage (under [doc])
at:
www.uplinksecurity.de

This document is still BETA, it would be nice if some of you folks could
verify the tutorial and post corrections, mistakes, additions or whatever
right here.

best regards
Gino "dairaen" Thomas


Quote
Quote
Hey Guys

The Link to this article is no longer working

http://www.uplinksecurity.de/data/pfsense-ovpn.pdf

Could the owner please update the link

Thanks
Quote

EDIT:
I already mailed him. No answer.
In the meantime you can find it here:
http://www.pfsense.org/mirror.php?section=tutorials/openvpn/pfsense-ovpn.pdf

Also note that on page 21 is a typo.
The field "Interface IP" should be 192.168.10.0/24 and NOT 192.168.1.0/24

« Last Edit: January 09, 2009, 10:21:28 am by GruensFroeschli »

Offline sullrich

  • Hero Member
  • *****
  • Posts: 5110
  • Karma: +3/-0
    • View Profile
    • pfSense
Re: pfsense and openvpn for new users tutorial BETA
« Reply #1 on: September 28, 2006, 09:27:33 am »
Both of these documents are wrong.

You should not be assigning the tunX interface at all.  pfSense handles all this behind the scenes by itself.

We fixed a number of bugs so you should be on the most recent snapshot.

Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
  • Karma: +0/-0
    • View Profile
Re: pfsense and openvpn for new users tutorial BETA
« Reply #2 on: September 28, 2006, 09:52:17 am »
noted, will be fixed in the next release, can you provide more info what changed
or should not be done as described in the existing documentation?

Offline sullrich

  • Hero Member
  • *****
  • Posts: 5110
  • Karma: +3/-0
    • View Profile
    • pfSense
Re: pfsense and openvpn for new users tutorial BETA
« Reply #3 on: September 28, 2006, 09:57:19 am »
Just leave out all parts that mention tunX

Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
  • Karma: +0/-0
    • View Profile
Re: pfsense and openvpn for new users tutorial BETA
« Reply #4 on: September 28, 2006, 10:05:18 am »
i will fix that this evening.

Offline hoba

  • Administrator
  • Hero Member
  • *****
  • Posts: 5837
  • Karma: +3/-0
  • What was the problem to this solution again?
    • View Profile
    • pfSense
Re: pfsense and openvpn for new users tutorial BETA
« Reply #5 on: September 28, 2006, 10:06:36 am »
Just try to follow your own tutorial after you removed the tunX references. if it's working it'S most likely correct  ;)

Offline JeGr

  • Hero Member
  • *****
  • Posts: 655
  • Karma: +0/-0
    • View Profile
Re: pfsense and openvpn for new users tutorial BETA
« Reply #6 on: September 28, 2006, 10:09:57 am »
As it may seem stupid to ask:

Yes I saw, that pfSense did tun0 behind the scenes, but how are one supposed to create filters on that IF if it is not assigned? That was my problem first hand as I was configuring OVPN and I couldn't create any rules on the tun0 IF until I added it manually as dairaen describes, too.

While that was a few weeks ago, things may be different now, so I hope you'll enlighten me :)

Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
  • Karma: +0/-0
    • View Profile
Re: pfsense and openvpn for new users tutorial BETA
« Reply #7 on: September 28, 2006, 11:51:07 am »
i am going to check that tomorrow with the newest snapshot

Offline sullrich

  • Hero Member
  • *****
  • Posts: 5110
  • Karma: +3/-0
    • View Profile
    • pfSense
Re: pfsense and openvpn for new users tutorial BETA
« Reply #8 on: September 28, 2006, 02:05:11 pm »
You do not create filters on OpenVPN for 1.0.  This has been covered already in the OpenVPN threads on this forum.

Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
  • Karma: +0/-0
    • View Profile
Re: pfsense and openvpn for new users tutorial BETA
« Reply #9 on: September 29, 2006, 05:56:41 am »
cheers,

updatet the documentation with the suggestions of Mr. Ullrich, and as expected
everything works fine after doing that. Pfsense can handle the tun0 stuff by itself
so everything is even easier now.

Download the latest version from:
http://www.uplinksecurity.de/data/pfsense-ovpn.pdf

Again, please check the document if you can find anything thats
not easy to understand, i will try my best to fix it so that really
everybody can install pfsense and ovpn by following it.

for the mods:
if theres nothing to change anymore, i will remove the BETA text
so you may add it to the tutorials section if you like to.


best regards
dairaen

Offline Numbski

  • Full Member
  • ***
  • Posts: 276
  • Karma: +1/-0
  • FreeBSD/MacOS X nutcase
    • View Profile
Re: pfsense and openvpn for new users tutorial BETA
« Reply #10 on: September 29, 2006, 09:47:07 am »
You do not create filters on OpenVPN for 1.0.  This has been covered already in the OpenVPN threads on this forum.

Wha....?

News to me. :)  I've been adding tunX as an interface and assigning rules on mine.  Oopsie!  Time to go fix my configs again.

Offline sullrich

  • Hero Member
  • *****
  • Posts: 5110
  • Karma: +3/-0
    • View Profile
    • pfSense
Re: pfsense and openvpn for new users tutorial BETA
« Reply #11 on: September 29, 2006, 10:39:40 am »
updatet the documentation with the suggestions of Mr. Ullrich, and as expected
everything works fine after doing that. Pfsense can handle the tun0 stuff by itself
so everything is even easier now.

I scanned through it rather quickly but everything looks good at first glance.

I'll let someone more experienced with OpenVPN chime in, I just knew that tunX stuff was wrong.


Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
  • Karma: +0/-0
    • View Profile
Re: pfsense and openvpn for new users tutorial BETA
« Reply #12 on: October 08, 2006, 10:09:08 am »
removed the BETA tag, everything works as supposed here with that configuration.

Offline dairaen

  • Jr. Member
  • **
  • Posts: 26
  • Karma: +0/-0
    • View Profile
Re: pfsense and openvpn for new users tutorial
« Reply #13 on: October 11, 2006, 09:25:07 am »
updated the tutorial, Hernan Maslowski submitted "Easy-RSA on Windows",
you can download the latest Version at:

http://www.uplinksecurity.de/data/pfsense-ovpn.pdf

mods, please add this to the tutorial section, you may link
directly if you like to.

Offline cracker

  • Newbie
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
Re: pfsense and openvpn for new users tutorial
« Reply #14 on: October 11, 2006, 01:15:57 pm »
On page 15, Firewall: Rules

there is still an OVPN1 tag. On my system there is no tag, is this generated automatically? Or have you still assigned the tun interface? This is not possible any more and causes problems.