Page 1 of 1
OpenvpnAs and Pfsense Site-to-Site
Posted: Wed Oct 26, 2011 1:09 pm
by vmachine
Has anyone gotten openvpnas and pfsense(openvpn) to work with a site to site connection?
Re: OpenvpnAs and Pfsense Site-to-Site
Posted: Mon Nov 21, 2011 4:42 pm
by tchilders
I have openvpn_as running on a linux server (Ubuntu) behind a pfSense firewall. I simply port-forward thru the firewall. pfSense has openvpn included as a service, but I prefer it as an independent server with a failover. My users/clients (and I) need the simplicity of openvpn_as.
Re: OpenvpnAs and Pfsense Site-to-Site
Posted: Mon Jan 30, 2012 3:32 am
by milkwerm
I've not done this as a true site to site, but I do have a PFsense box running as a client to a openvpn-as server at HQ. I just used the howto here
http://forum.pfsense.org/index.php/topic,29944.0.html as a starting point. Use the sacli tool to get the certs/key files needed from the openvpn-as server and follow that thread.
note: you need to use the <user>_AUTOLOGON files
and put the logon details into the pfsense config (using BASIC auth) for some reason..
Re: OpenvpnAs and Pfsense Site-to-Site
Posted: Mon Jul 08, 2013 9:59 pm
by brandon.dacrib
I got around needing to add the logon details into the pfsense config (using BASIC auth) by:
1. clicking "allow auto-login", under the permissions for that user.
2. exporting the user details with
Code: Select all
/usr/local/openvpn_as/scripts/sacli -u $user -o /tmp/$user GetAutoLogin5
3. using those details as shown in the link above