Assign static IPs to tap clients in pfSense's OpenVPN server

Solution 1:

After some deep digging I found a bug in pfSense's Redmine tracker. This states that the OpenVPN server is missing the client-config-dir variable.

Adding

mode server;client-config-dir /var/etc/openvpn-csc;

to the advanced server options as well as providing the client specific override

ifconfig-push [IP] [netmask]

did the trick.

Solution 2:

Some update from my experience:

Valid for pfsense 2.3.2

Missing option "client-config-dir" was fixed. now its good.

but now, by default, openvpn server config in pfsense has option "username-as-common-name"

So in client specific override in field "Common Name" try to write username instead of the Common Name.

if you have problems with assigning static IPs, try to inspect your openvpn server config in "/var/etc/openvpn/server1.conf" for that option.

P.S. ifconfig-push option remain the same

Assign static IPs to tap clients in pfSense's OpenVPN server

Solution 1:

Solution 2:

Tags:

Firewall

Tap

Openvpn

Pfsense

Related

Recent Posts