StoneVPN

Scripts to manage certificates or generate config files
leon
OpenVpn Newbie
Posts: 8
Joined: Thu Oct 21, 2010 10:56 am

StoneVPN

Postby leon » Thu Oct 21, 2010 11:00 am

Just wanted to say that i've coded a tool for easy OpenVPN certificate and configuration management. It's called StoneVPN, written in python and it's available from the EPEL repository if you're using RHEL/CentOS and Fedora (12 and later) repositories. Also it's available in tarball on github.com/lkeijser/stonevpn.

Any feedback would be most welcome.

User avatar
krzee
Forum Team
Posts: 729
Joined: Fri Aug 29, 2008 5:42 pm

Re: StoneVPN

Postby krzee » Fri Oct 22, 2010 7:10 am

i have made this post sticky
thank you for sharing your tool :D

dhruvpandit
OpenVPN Power User
Posts: 53
Joined: Tue Apr 19, 2011 11:18 am

Re: StoneVPN

Postby dhruvpandit » Tue Nov 08, 2011 9:11 am

how to use it ??

dhruvpandit
OpenVPN Power User
Posts: 53
Joined: Tue Apr 19, 2011 11:18 am

Re: StoneVPN

Postby dhruvpandit » Tue Nov 08, 2011 9:19 am

sorry repost. :(
Last edited by dhruvpandit on Wed Nov 09, 2011 9:52 am, edited 1 time in total.

leon
OpenVpn Newbie
Posts: 8
Joined: Thu Oct 21, 2010 10:56 am

Re: StoneVPN

Postby leon » Tue Nov 08, 2011 4:27 pm

dhruvpandit wrote:how to use it?


$ man stonevpn
$ stonevpn --help

An easy example is in the man page.

dhruvpandit
OpenVPN Power User
Posts: 53
Joined: Tue Apr 19, 2011 11:18 am

Re: StoneVPN

Postby dhruvpandit » Wed Nov 09, 2011 9:55 am

leon wrote:
dhruvpandit wrote:how to use it?


$ man stonevpn
$ stonevpn --help

An easy example is in the man page.


thanks for fast reply leon,

but i am very new in OpenVPN, so need some more examples :(
i have setup my server just 2 days back.
also want to ask if you know any GUI based Certificate management script or tool , then pls let me know.

and if possible, pls give some more examples of how to create, revoke new certificates with stonevpn.

dhruvpandit
OpenVPN Power User
Posts: 53
Joined: Tue Apr 19, 2011 11:18 am

Re: StoneVPN

Postby dhruvpandit » Fri Nov 18, 2011 6:41 am

getting this error

[root@VPN2 stonevpn]# stonevpn -f dhruvpandit -n "dhruvpandit" -z -p -m MY MAIL ID@gmail.com
Traceback (most recent call last):
File "/usr/bin/stonevpn", line 17, in ?
import StoneVPN.app as app
File "/usr/lib/python2.4/site-packages/StoneVPN/app.py", line 38, in ?
from OpenSSL import SSL, crypto
ImportError: No module named OpenSSL

leon
OpenVpn Newbie
Posts: 8
Joined: Thu Oct 21, 2010 10:56 am

Re: StoneVPN

Postby leon » Fri Nov 18, 2011 6:57 am

Hi,

This means you didn't install the pyOpenSSL library. On RedHat/CentOS it's

Code: Select all

yum install pyOpenSSL

on debian it's (AFAIK)

Code: Select all

apt-get install python-openssl


PS: that was in the README file though ;)

dhruvpandit
OpenVPN Power User
Posts: 53
Joined: Tue Apr 19, 2011 11:18 am

Re: StoneVPN

Postby dhruvpandit » Mon Nov 28, 2011 12:20 pm

now its giving this error,

Traceback (most recent call last):
File "/usr/bin/stonevpn", line 17, in ?
import StoneVPN.app as app
File "/usr/lib/python2.4/site-packages/StoneVPN/app.py", line 43, in ?
from IPy import IP
ImportError: No module named IPy




i have installed other packages, but this package is not installed from yum also.

pls tell me how to install it.
also give me the list of all required packages so i can install it at once.

if stonevpn should be installed by yum install stonevpn, then it will be great. but its showing this

Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* rpmforge: fr2.rpmfind.net
* base: mirrors.cat.pdx.edu
* updates: mirrors.cat.pdx.edu
* extras: ftp.osuosl.org
Warning: No matches found for: stonevpn
No Matches found

leon
OpenVpn Newbie
Posts: 8
Joined: Thu Oct 21, 2010 10:56 am

Re: StoneVPN

Postby leon » Mon Nov 28, 2011 3:44 pm

You will need to install the EPEL repo first. This is also mentioned in the README file ;)

User avatar
Mimiko
Forum Team
Posts: 1565
Joined: Wed Sep 22, 2010 3:18 am

Re: StoneVPN

Postby Mimiko » Tue Nov 29, 2011 7:25 am

Will it be ported to windows?

leon
OpenVpn Newbie
Posts: 8
Joined: Thu Oct 21, 2010 10:56 am

Re: StoneVPN

Postby leon » Tue Nov 29, 2011 9:48 am

Mimiko wrote:Will it be ported to windows?


I have no immediate plans for that, but it shouldn't be too hard considering it's all python. Perhaps a few linux-only hacks but nothing that can't be ported. I'll make it a TODO item :)

dhruvpandit
OpenVPN Power User
Posts: 53
Joined: Tue Apr 19, 2011 11:18 am

Re: StoneVPN

Postby dhruvpandit » Tue Nov 29, 2011 11:58 am

thanks, now i have installed it via YUM.

now its giving this error :

Error: missing section 'organizationalUnitName_default' in /etc/pki/tls/openssl.cnf


i already have active OpenVPN with about 25 clients on this server.

i think this is some certificate issue.
how can i use stonevpn by using old certificates??

leon
OpenVpn Newbie
Posts: 8
Joined: Thu Oct 21, 2010 10:56 am

Re: StoneVPN

Postby leon » Tue Nov 29, 2011 12:37 pm

dhruvpandit wrote:thanks, now i have installed it via YUM.

now its giving this error :

Error: missing section 'organizationalUnitName_default' in /etc/pki/tls/openssl.cnf


...

Really, it's not that hard. Add 'organizationalUnitName_default' to your openssl.cnf file. Search for it, it's probably commented out, and add a default OU name (something like 'VPN' would be ok).

dhruvpandit
OpenVPN Power User
Posts: 53
Joined: Tue Apr 19, 2011 11:18 am

Re: StoneVPN

Postby dhruvpandit » Wed Nov 30, 2011 9:34 am

pls tell me how to use my old certificates with stoneVPN? or will it use the same old certs and key file ?


Return to “Cert / Config management”

Who is online

Users browsing this forum: No registered users and 1 guest