vpn

  1. S

    Solved mpd5 VPN server - clients cannot access server's LAN - "/usr/sbin/arp" returned 256

    Hi I've updated from 13.3 to 14.1 and hit the issue with the mpd5 VPN server: VPN clients can connect and access server itself, but cannot access LAN beyond that server. in mpd5.log I see the following difference from the old system, when client connects: [b_pptp-1] system: command...
  2. cgenie

    pf.conf for VPN inside jails

    Hello, I have trouble setting up pf.conf so that from inside a jail I can access my VPN network. I'm using Bastille and I have something like this in the pf.conf file: bastille_if="bastille0" ext_if="vtnet0" vpn_if="tun1" my_jail_addr=10.10.2.30 my_vpn_addr=10.15.1.1 set skip on lo #set...
  3. aragats

    PF NAT to route Wireguard clients' traffic

    I'm missing something obvious. Why NAT doesn't work in a Wireguard server to route clients' traffic? ext_if="vtnet0" wg_clients="10.40.0.0/24" nat on $ext_if inet from $wg_clients to any -> ($ext_if) The server's Wireguard IP address is 10.40.0.1, the client's - 10.40.0.30. Running tcpdump on...
  4. hbsd

    Solved How do I setup v2ray?

    Hi, I've installed net/v2ray and I want to connect to a server. In the description of this software, it's said that you should edit config.json file and add the list of servers to it, but I don't see this file. Please guide me if you've used this proxy. Thanks
  5. hbsd

    Solved Can't connect to openvpn

    Hello everybody, I want to connect to a openvpn client with a .ovpn profile as follows: sudo openvpn ~/Downloads/openvpn_servers.ovpn I get the following messages and everything seems fine but openvpn does not work and I can't open the websites blocked by the government (There is no problem in...
  6. W

    Zerotier rc.conf issues

    Hi all - really appreciate any help people can please provide. I've been trying to set up zerotier (https://www.zerotier.com/) on a freebsd box that serves as my home (multi purpose) server, so that I can VPN into my home lan remotely. I can get the whole thing to work but it requires some...
  7. C

    IPsec: incoming ESP packets dropped

    I am trying to set-up an IPsec based VPN tunnel between my smartphone and my home server (192.168.0.42). The connection is established, but incoming (UDP-encapsulated) ESP packets are dropped on the server side. I'm using OpenIKED for the key exchange. The following output shows the dropped...
  8. thecodechemist

    Wireguard in iocage jail: Failed to create TUN device: open /dev/tun: no such file or directory

    Hi, I'm having issues with running wireguard in an iocage jail on FreeBSD 13.0-RELEASE-p10. The weird thing is, I also had issues with this on my TrueNAS Core system (12.2-RELEASE-p15), but after enabling the allow_tun option for the jail it now runs just fine there. Here's some config data...
  9. alfa

    Weird WireGuard Static Port Problem

    Hi, i have site to site Wireguard vpn both client and server have static port first connection with this configuration successfully initiates. But when PPPOE connection gone (default route also removing from route table) and reestablished wireguard server never connect anymore with client port...
  10. blind0ne

    Configure pptp vpn service

    Hello, I would like to setup VPN server on my machine to connect on from Windows. I've installed mpd from ports, and here is my config. in rc.conf: mpd_enable=YES mpd_flags="-b" gateway_enable="YES" And in: /u/l/e/mpd5# diff mpd.conf.sample mpd.conf 31c31 < load dialup --- > load...
  11. S

    mpd5 - ban IP with failed authentication

    Hi I want to protect my PPTP/L2TP VPN server by banning clients after 3 failed authentications. Tried to use fail2ban (+IPFW) but was unable to find any IP in MPD5/Racoon logs (even with debug log level). Is there any solution how to ban IP of a client that failed PPTP/L2TP authentications...
  12. K

    IPFW TCP protocol becomes non-working for PPTP-client after ipfw nat

    Hi everyone! I need help with strange situation. There is a host (12.2) with jails, one of these jails is a vpn server (mpd5) with internal eth1=192.168.1.9 and another one is a mail server with internal eth1=192.168.1.4. The vpn jail is a vnet jail, and the mail jail is a simple jail...
  13. RevennaFox

    Advice for Creating a "Command and Control" Server?

    I have a problem that I think FreeBSD can solve for me. I have routers at various off-site locations that I need to be able to log into via SSH for monitoring, configuration, and maintenance. The problem is that none of the routers have static IP addresses, some of them are behind carrier NAT...
  14. S

    ERRO[0000] Failed to get a tun/tap device

    I'm trying to configure nebula on server but I got below error. INFO[0000] Firewall rule added firewallRule="map[caName: caSha: direction:outgoing endPort:0 groups:[] host:any ip: proto:0 startPort:0]" INFO[0000] Firewall rule added...
  15. neal

    Solved Openvpn fails on system upgraded to 13.0 (Static route failure on fib)

    I have just upgraded a server to 13.0 and now my vpn no longer works. It seems that I am no longer able to set a default route on fib 1 as the "Network is unreachable". I have the following in rc.conf, which used to work a treat, but no longer does: static_routes="vpn" route_vpn="default...
  16. J

    Solved Firewall vs Softether VPN

    Hello everyone, I'm having little problem with my setup of FreeBSD and Softether VPN. I want to be able to make connection with my VPN Server while firewall_type="closed". I thought I had to add these rules: add allow udp from any to any 67 setup keep-state add allow udp from any to any 68...
  17. Moviuro

    WireGuard peers can't reach each other on IPv6

    Hi all, Since 2018 I have a FreeBSD server acting as a WireGuard "server". This server has an IPv6 tunnel, courtesy of Hurricane Electric (https://tunnelbroker.net) and I have successfully distributed those IPv6 addresses to the VPN peers, so they now live in the future. Every single one of...
  18. R

    MPD5 VPN and up-down scripts

    Hi ppl. I have mpd5-5.8_10 Multi-link PPP daemon based on netgraph FreeBSD 12.1-RELEASE-p3 GENERIC amd64 Previously, it had such scripts: set iface up-script set iface down-script It was possible to run any script when a user connected. Now this option is not in the...
  19. m_pahlevanzadeh

    tunneling and android client

    I have a FreeBSD full access. I need to turn Iran Internet Filtering.My server is out of Iran. So I can turn my Internet Filtering. I installed Zebedee in my server and it good work with Linux Desktop,Both have 2.5.3 version, But Android doens't has for this version. I'm looking for a tunneling...
  20. scotia

    Solved Bridging OpenConnect VPN server client tunnels to a central site

    Hi, I've got a FreeBSD VM in a DC running net/ocserv that allows clients to access my network over SSL. It dutifully creates tunnel interfaces as each client connects, and clients route back to the central site via the VM (as it happens over an IPSEC tunnel). Rather that normally route the...
Back
Top