Openvpn Sertificate 0 Bytes

Scripts to manage certificates or generate config files
mercy_angel
OpenVpn Newbie
Posts: 6
Joined: Wed Jun 07, 2017 4:38 pm

Openvpn Sertificate 0 Bytes

Postby mercy_angel » Wed Jun 07, 2017 4:38 pm

Hi, I am running a openvpn server where create certs and put on pcs. I noticed that after unplug and plug network cable to server that now 0 bytes sertificate is creating. In keys folder i notice that allways with sertificate generating a .pem file. Now there is no .pem file, only 4 files .ovpn, .key and so on. Where can be mistake? I try on virtual machine with my /var/www and with my /etc/openvpn folders and its working, but on live machine dont and it is a big problem.
If I restart service this will be a little problem for customers, but if thats only solution i will do it, but maybe some of you can tell me what to try. I tried to remove index.txt file in keys folder but not working.

Thanks in advance!

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 2436
Joined: Fri Jun 03, 2016 1:17 pm

Re: Openvpn Sertificate 0 Bytes

Postby TinCanTech » Wed Jun 07, 2017 4:58 pm


mercy_angel
OpenVpn Newbie
Posts: 6
Joined: Wed Jun 07, 2017 4:38 pm

Re: Openvpn Sertificate 0 Bytes

Postby mercy_angel » Wed Jun 07, 2017 6:35 pm

[root@localhost ~]# uname -a
Linux localhost.localdomain 2.6.18-164.el5 #1 SMP Thu Sep 3 03:28:30 EDT6_64 x86_64 x86_64 GNU/Linux



server.conf
port 1194
proto udp
dev tun
ca ca.crt
cert server.crt
key server.key # This file should be kept secret
dh dh1024.pem
server 192.168.2.0 255.255.240.0 # HostMin: 192.168.2.1 HostMax: 192.168.255.254
ifconfig-pool-persist ipp.txt
client-to-client
keepalive 10 120
comp-lzo
max-clients 3000
user nobody
group nobody
persist-key
persist-tun
status openvpn-status.log
log openvpn.log
verb 3
mute 20
management 127.0.0.1 7505
client-config-dir ccd


Network setup
eth0 Link encap:Ethernet HWaddr 08:00:27:8C:81:D8
inet addr:192.168.5.104 Bcast:192.168.5.255 Mask:255.255.255.0
inet6 addr: xxxx::xxxx:xxxx:xxxx:xxxx/xx Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2128821 errors:0 dropped:0 overruns:0 frame:0
TX packets:282216 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:2606066374 (2.4 GiB) TX bytes:33639457 (32.0 MiB)
Base address:0xd000 Memory:f0000000-f0020000

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:159 errors:0 dropped:0 overruns:0 frame:0
TX packets:159 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:19397 (18.9 KiB) TX bytes:19397 (18.9 KiB)

server.log

Mon Jun 5 14:13:51 2017 OpenVPN 2.3.13 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Nov 3 2016
Mon Jun 5 14:13:51 2017 library versions: OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008, LZO 2.02
Mon Jun 5 14:13:51 2017 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:7505
Mon Jun 5 14:13:51 2017 Diffie-Hellman initialized with 1024 bit key
Mon Jun 5 14:13:51 2017 WARNING: file 'server.key' is group or others accessible
Mon Jun 5 14:13:51 2017 Socket Buffers: R=[129024->129024] S=[129024->129024]
Mon Jun 5 14:13:51 2017 ROUTE_GATEWAY 192.168.5.1/255.255.255.0 IFACE=eth0 HWADDR=08:00:27:8c:81:d8
Mon Jun 5 14:13:51 2017 TUN/TAP device tun0 opened
Mon Jun 5 14:13:51 2017 TUN/TAP TX queue length set to 100
Mon Jun 5 14:13:51 2017 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Mon Jun 5 14:13:51 2017 /sbin/ip link set dev tun0 up mtu 1500
Mon Jun 5 14:13:51 2017 /sbin/ip addr add dev tun0 local 192.168.2.1 peer 192.168.2.2
Mon Jun 5 14:13:51 2017 /sbin/ip route add 192.168.2.0/20 via 192.168.2.2
Mon Jun 5 14:13:51 2017 GID set to nobody
Mon Jun 5 14:13:51 2017 UID set to nobody
Mon Jun 5 14:13:51 2017 UDPv4 link local (bound): [undef]
Mon Jun 5 14:13:51 2017 UDPv4 link remote: [undef]
Mon Jun 5 14:13:51 2017 MULTI: multi_init called, r=256 v=256
Mon Jun 5 14:13:51 2017 IFCONFIG POOL: base=192.168.2.4 size=1022, ipv6=0

mercy_angel
OpenVpn Newbie
Posts: 6
Joined: Wed Jun 07, 2017 4:38 pm

Re: Openvpn Sertificate 0 Bytes

Postby mercy_angel » Tue Jun 20, 2017 6:52 pm

anyone maybe know what can be issue?

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 2436
Joined: Fri Jun 03, 2016 1:17 pm

Re: Openvpn Sertificate 0 Bytes

Postby TinCanTech » Tue Jun 20, 2017 7:17 pm

Are you having trouble with EasyRSA ?

mercy_angel
OpenVpn Newbie
Posts: 6
Joined: Wed Jun 07, 2017 4:38 pm

Re: Openvpn Sertificate 0 Bytes

Postby mercy_angel » Wed Jun 21, 2017 9:08 pm

really i dont know where is problem...

suddenly, i cant create certificated, it create .zip but with 0bytes.
i notice that there is no any creating of .pem files. I explained in first post.

As i said, i copy /etc/openvpn and /var/www in virtual machine and there works just fine! I dont know why live dont work...

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 2436
Joined: Fri Jun 03, 2016 1:17 pm

Re: Openvpn Sertificate 0 Bytes

Postby TinCanTech » Wed Jun 21, 2017 9:55 pm

Sounds like you have copied something incorrectly .. maybe.

mercy_angel
OpenVpn Newbie
Posts: 6
Joined: Wed Jun 07, 2017 4:38 pm

Re: Openvpn Sertificate 0 Bytes

Postby mercy_angel » Tue Jun 27, 2017 6:26 am

on virtual machine is working just fine, on line machine dont. 0 bytes even i restarted service openvpn and appache. What can be problem?

mercy_angel
OpenVpn Newbie
Posts: 6
Joined: Wed Jun 07, 2017 4:38 pm

Re: Openvpn Sertificate 0 Bytes

Postby mercy_angel » Tue Jun 27, 2017 4:51 pm

Maybe i can try to restart more services?

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 2436
Joined: Fri Jun 03, 2016 1:17 pm

Re: Openvpn Sertificate 0 Bytes

Postby TinCanTech » Tue Jun 27, 2017 6:37 pm

We do not understand what problem you are having .. try to document it clearly.


Return to “Cert / Config management”

Who is online

Users browsing this forum: No registered users and 2 guests