Using Dragonfish-24.04.2. Attempting to configure the OPENVPN service and client. The option is missing! Can this be added back?
The service deprecations are documented, this one was removed in 23.10, details and alternatives are available in the 23.10 release notes.
This is a huge loss. How can something so basic go away?
Big regrets for upgrading.
Thank you ABain.
You should still be able to configure openvpn using an app. That was the point of deprecation, moving it to an app.
2 Likes
Thank you. I think the frustrating part was losing the in app integration that I had already become used to within the service. The good thing after reading some more is there appear to be similar benefits with other platforms. Perhaps this can be a good thing.
Moving away before having an app replacement for VPNClient seems strange.
Whilst I agree with you, and am not fond of many of the recent decisions, it is what it is, and we have to make the most of it.
Although they went with wireguard. I notice in the applications ability to configure VPN services has been removed from the network configuration widgets on applications such as Transmission and qBittorrent.
This seems backwards. Even if we use “applications” to perform VPN, the need to configure from the application menus remains.
I think you’re seeing the difference between TrueCharts apps (which had this ability) and the “official” apps (which never have AFAIK).
1 Like
Painting with broad strokes here, VPN access into your network should be handled by your firewall, not your storage appliance, as should the obfuscation of your many Linux ISO downloads.
Agreed, which is one of many reasons that the OpenVPN Server service was really weird to see in TrueNAS (it didn’t help that its implementation was awful).
I’m not sure I agree here. It seems quite logical to me to configure this at the application level, as (presumably) only certain applications will be downloading those Linux ISOs.
You’re not wrong, and I guess it’s unfair to expect “normal” people to have sNAT/outbound NAT rules on their firewall, eg
Tutorial: Configure PIA (Private Internet Access) VPN on pfSense 2.4 | Netgate Forum
Outbound NAT | pfSense Documentation (netgate.com)
But if doing special routing/ tunneling in an “App” is a requirement, it may be more appropriately installed in a VM.
The service deprecations are documented, this one was removed in 23.10, details and alternatives are available in the 23.10 release notes.
I don’t think the alternatives are useful:
- OpenVPN Client has no equivalent application
That’s not much of an alternative, is it?
Really depends on what you want to do.
Tunnel containers through a VPN? Use Gluetun.
Tunnel Scale’s connection to the world? Use a VPN at your router level (which also works with the first statement!)
Great thing about Gluetun, you can just pick and choose which apps will use it.
No. The whole idea of truenas is to be a storage. I want to access my storage inside my openvpn network.
Well it’s an (relatively) easy solution. I spun up an alpine lxc container to serve as a vpn router for truenas. It’s good that I truenas in a vm.
The lxc container takes 44MB of disk space and 5-6MB of ram.
Technically it could be done in a vm too, but that’ll require more disk and ram.
I’m not sure if this can be achieved using docker container though.
Well I’m happy now, let’s see what other challenges will TrueNAS give me. It is quite stubborn for an open source software. They should have left the client at least.
If someone wants to know how to achieve this let me know and I’ll write a tutorial. Proxmox doesn’t have to be on the same machine as truenas.
1 Like