OpenvpnAs and Pfsense Site-to-Site
-
vmachine
- OpenVpn Newbie
- Posts: 15
- Joined: Thu Oct 06, 2011 3:52 pm
OpenvpnAs and Pfsense Site-to-Site
Has anyone gotten openvpnas and pfsense(openvpn) to work with a site to site connection?
-
tchilders
- OpenVpn Newbie
- Posts: 1
- Joined: Tue Nov 22, 2011 2:18 pm
Re: OpenvpnAs and Pfsense Site-to-Site
I have openvpn_as running on a linux server (Ubuntu) behind a pfSense firewall. I simply port-forward thru the firewall. pfSense has openvpn included as a service, but I prefer it as an independent server with a failover. My users/clients (and I) need the simplicity of openvpn_as.
-
milkwerm
- OpenVpn Newbie
- Posts: 1
- Joined: Tue Oct 12, 2010 4:38 pm
Re: OpenvpnAs and Pfsense Site-to-Site
I've not done this as a true site to site, but I do have a PFsense box running as a client to a openvpn-as server at HQ. I just used the howto here http://forum.pfsense.org/index.php/topic,29944.0.html as a starting point. Use the sacli tool to get the certs/key files needed from the openvpn-as server and follow that thread.
note: you need to use the <user>_AUTOLOGON files and put the logon details into the pfsense config (using BASIC auth) for some reason..
note: you need to use the <user>_AUTOLOGON files and put the logon details into the pfsense config (using BASIC auth) for some reason..
-
brandon.dacrib
- OpenVpn Newbie
- Posts: 1
- Joined: Mon Jul 08, 2013 9:54 pm
Re: OpenvpnAs and Pfsense Site-to-Site
I got around needing to add the logon details into the pfsense config (using BASIC auth) by:
1. clicking "allow auto-login", under the permissions for that user.
2. exporting the user details with
3. using those details as shown in the link above
1. clicking "allow auto-login", under the permissions for that user.
2. exporting the user details with
Code: Select all
/usr/local/openvpn_as/scripts/sacli -u $user -o /tmp/$user GetAutoLogin5