I matched my OpenVPN configuration with yours for the most part. I got a up and down script. Doesn't seem to have helped unfortunately. Maybe I need to rebuild my Jail from the ground up.
Two other things I've noticed with your OpenVPN configuration.
Firstly, are you not getting any warnings/errors related to IPv6 in your log? Because I had to add these two lines to my OpenVPN config.
Secondly, I'm getting this warning with your cipher settings.
to lower case to get rid of those.
Below is my OpenVPN configuration file.
Do you think it would matter at all if I changed the route line to the following to match my LAN:
Code:
{
"CONFIG_VERSION": "28",
"allow_chflags": 0,
"allow_mlock": 0,
"allow_mount": 1,
"allow_mount_devfs": 1,
"allow_mount_fusefs": 0,
"allow_mount_nullfs": 0,
"allow_mount_procfs": 0,
"allow_mount_tmpfs": 0,
"allow_mount_zfs": 0,
"allow_quotas": 0,
"allow_raw_sockets": 1,
"allow_set_hostname": 1,
"allow_socket_af": 0,
"allow_sysvipc": 0,
"allow_tun": 1,
"allow_vmm": 0,
"assign_localhost": 0,
"available": "readonly",
"basejail": 0,
"boot": 0,
"bpf": 0,
"children_max": "0",
"cloned_release": "11.4-RELEASE-p6",
"comment": "none",
"compression": "lz4",
"compressratio": "readonly",
"coredumpsize": "off",
"count": "1",
"cpuset": "off",
"cputime": "off",
"datasize": "off",
"dedup": "off",
"defaultrouter": "192.168.178.1",
"defaultrouter6": "none",
"depends": "none",
"devfs_ruleset": "4",
"dhcp": 0,
"enforce_statfs": "2",
"exec_clean": 1,
"exec_created": "/usr/bin/true",
"exec_fib": "0",
"exec_jail_user": "root",
"exec_poststart": "/usr/bin/true",
"exec_poststop": "/usr/bin/true",
"exec_prestart": "/usr/bin/true",
"exec_prestop": "/usr/bin/true",
"exec_start": "/bin/sh /etc/rc",
"exec_stop": "/bin/sh /etc/rc.shutdown",
"exec_system_jail_user": "0",
"exec_system_user": "root",
"exec_timeout": "60",
"host_domainname": "none",
"host_hostname": "transmission2",
"host_hostuuid": "transmission2",
"host_time": 1,
"hostid": "9a596e85-d38f-11e8-b057-0025907457e1",
"hostid_strict_check": 0,
"interfaces": "vnet0:bridge0",
"ip4": "new",
"ip4_addr": "vnet0|192.168.178.10/24",
"ip4_saddrsel": 1,
"ip6": "disable",
"ip6_addr": "none",
"ip6_saddrsel": 1,
"ip_hostname": 0,
"jail_zfs": 0,
"jail_zfs_dataset": "iocage/jails/transmission2/data",
"jail_zfs_mountpoint": "none",
"last_started": "2021-01-09 17:00:36",
"localhost_ip": "none",
"login_flags": "-f root",
"mac_prefix": "02ff60",
"maxproc": "off",
"memorylocked": "off",
"memoryuse": "off",
"min_dyn_devfs_ruleset": "1000",
"mount_devfs": 1,
"mount_fdescfs": 1,
"mount_linprocfs": 0,
"mount_procfs": 0,
"mountpoint": "readonly",
"msgqqueued": "off",
"msgqsize": "off",
"nat": 0,
"nat_backend": "ipfw",
"nat_forwards": "none",
"nat_interface": "none",
"nat_prefix": "172.16",
"nmsgq": "off",
"notes": "none",
"nsem": "off",
"nsemop": "off",
"nshm": "off",
"nthr": "off",
"openfiles": "off",
"origin": "readonly",
"owner": "root",
"pcpu": "off",
"plugin_name": "none",
"plugin_repository": "none",
"priority": "99",
"pseudoterminals": "off",
"quota": "none",
"readbps": "off",
"readiops": "off",
"release": "12.2-RELEASE-p2",
"reservation": "none",
"resolver": "/etc/resolv.conf",
"rlimits": "off",
"rtsold": 0,
"securelevel": "2",
"shmsize": "off",
"stacksize": "off",
"stop_timeout": "30",
"swapuse": "off",
"sync_state": "none",
"sync_target": "none",
"sync_tgt_zpool": "none",
"sysvmsg": "new",
"sysvsem": "new",
"sysvshm": "new",
"template": 0,
"type": "jail",
"used": "readonly",
"vmemoryuse": "off",
"vnet": 1,
"vnet0_mac": "02ff60bb2e01 02ff60bb2e02",
"vnet0_mtu": "auto",
"vnet1_mac": "none",
"vnet1_mtu": "auto",
"vnet2_mac": "none",
"vnet2_mtu": "auto",
"vnet3_mac": "none",
"vnet3_mtu": "auto",
"vnet_default_interface": "auto",
"vnet_default_mtu": "1500",
"vnet_interfaces": "none",
"wallclock": "off",
"writebps": "off",
"writeiops": "off"
}
I just keep getting these messages in my security log, really scratching my head over this. It seems that my Transmission client is still trying to connect to peers over the