I have a production PBXact 25 server set up and running and a replica based on a home server for testing purposes running the latest FreePBX distro with purchased Systems Admin module installed.
In both cases, the machines are running the primary ethernet (eth0) attached to the public internet, receiving an IP address via DHCP from the ISP and the second network adapter (eth1) configured on a NAT subnet (192.168.1.0/24) through the System Admin module. the Second network is configured with a DHCP server to enable locally attached clients (ATA and VoIP phones).
Both servers have the firewall configured identically through the web GUI w/r/t interfaces and networks and the VPN configured through the System Admin module to share the routes 10.8.0.0 and 192.168.1.0.
Using a VPN connection to FreePBX, I can access the local network devices, but this is not so with the PBXact version.
Reviewing the server1.conf files on both machines, the FreePBX version contains the push route directives for the VPN subnet and local network subnet (see file contents at bottom of post). PBXact is missing these directives.
Both FreePBX and PBXact are running the same version:
OpenVPN 2.4.9 x86_64-redhat-linux-gnu [Fedora EPEL patched] [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Apr 24 2020
library versions: OpenSSL 1.0.2k-fips 26 Jan 2017, LZO 2.06
OpenVPN 2.4.9 x86_64-redhat-linux-gnu [Fedora EPEL patched] [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Apr 24 2020
library versions: OpenSSL 1.0.2k-fips 26 Jan 2017, LZO 2.06
I have forced the rebuild of the VPN on the PBXact device by disabling and enabling the routes and saving the VPN config (evidenced by the different timestamp on the server1.conf file) and in all cases, the config file lacks the push route directives.
Is there a version difference between the System admin modules on the two platforms? Am I missing something?
Thanks.
FreePBX server1.conf file:
Configuration automatically generated via Sysadmin RPM
MODIFICATIONS TO THIS FILE WILL BE OVERWRITTEN.
Generated at: Sat, 15 Oct 2022 17:52:26 +0000
log /var/log/openvpn.log
port 1194
proto udp
dev tun
topology subnet
ca sysadmin_ca.crt
dh sysadmin_dh.pem
crl-verify sysadmin_crl.pem
cert sysadmin_server1.crt
key sysadmin_server1.key
ifconfig-pool-persist ipp.txt
keepalive 10 120
comp-lzo
persist-key
persist-tun
verb 3
client-config-dir ccd
ccd-exclusive
status sysadmin_server1-status.log 10
status-version 3
script-security 2
reneg-sec 3600
server 10.8.0.0 255.255.255.0
push “route 192.168.1.0 255.255.255.0”
push “route 10.8.0.0 255.255.255.0”