Здравствуйте, есть загвоздка в настройке OpenVPN клиента Keenetic Giga III с PFsense в режиме [Site to site/peer to peer SSL/TLC]
Клиент:
OpenVPN client в режиме Remote Access подключается:
dev tun
persist-tun
persist-key
cipher AES-256-CBC
auth SHA1
tls-client
client
resolv-retry infinite
remote domain.com 1196 udp
verify-x509-name "CA-OpenVPN" name
auth-user-pass
remote-cert-tls server
<ca>
-----BEGIN CERTIFICATE-----
>>>>
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
>>>>
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
>>>>
-----END PRIVATE KEY-----
</key>
<tls-auth>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
>>>>
-----END OpenVPN Static key V1-----
</tls-auth>
key-direction 1
В режиме [Site to site/peer to peer SSL/TLC] ошибки:
dev tun
persist-tun
persist-key
cipher AES-256-CBC
auth SHA1
tls-client
client
resolv-retry infinite
remote domain.com 1196 udp
verify-x509-name "CA-OpenVPN" name
remote-cert-tls server
<ca>
-----BEGIN CERTIFICATE-----
>>>>
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
>>>>
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
>>>>
-----END PRIVATE KEY-----
</key>
<tls-auth>
#
# 2048 bit OpenVPN static key
#
>>>>
-----END OpenVPN Static key V1-----
</tls-auth>
NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay
TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
TLS Error: TLS handshake failed
Подскажите пожалуйста, как добиться работы OpenVPN в режиме [Site to site/peer to peer]?
Чтобы у локальной сети [OpenVPN Server] был доступ в локальную сеть [OpenVPN Client] и наоборот
Спасибо!?