here is some details :
Architecture :
All server and clients are with Ubuntu 18.04 LTS
Main site : hosting openVPN server, on 192.168.8.251 accessed through gateway on port 1194 and 943 for admin / client https access.
I found that server was hosting a previous installation, from 2016, of openVPN, not used for a while.
I reinstall / upgrade it following officials doc ..
Server is OK, is fully accessible, as for admin than simple client, as well from inside server site than from outside.
I create new user from the web admin, then connect from outside with client user/authpass ;
Then downloaded config file from web user link (auto-login and client one) on Client PC, and then trying to start openVPN, as well from ubuntu parameter -- by adding file downloaded, as well from command line ; with no result
Negotiations start, seems to be OK, then, some thing wrong append and negotiation restart.. Here are the ouput from the command line (openvpn client)
Code: Select all
$ openvpn --verb 5 --config ~/.openvpn/soubes/nicolas_autologin.ovpn
Mon Jun 1 14:27:34 2020 OpenVPN 2.4.4 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 14 2019
Mon Jun 1 14:27:34 2020 library versions: OpenSSL 1.1.1 11 Sep 2018, LZO 2.08
Mon Jun 1 14:27:34 2020 WARNING: --ns-cert-type is DEPRECATED. Use --remote-cert-tls instead.
Mon Jun 1 14:27:34 2020 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jun 1 14:27:34 2020 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jun 1 14:27:34 2020 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.8.251:1194
Mon Jun 1 14:27:34 2020 Socket Buffers: R=[212992->212992] S=[212992->212992]
Mon Jun 1 14:27:34 2020 UDP link local: (not bound)
Mon Jun 1 14:27:34 2020 UDP link remote: [AF_INET]192.168.8.251:1194
Mon Jun 1 14:27:38 2020 Server poll timeout, restarting
Mon Jun 1 14:27:38 2020 SIGUSR1[soft,server_poll] received, process restarting
My questions are :
- Is the "WARNING: --ns-cert-type is DEPRECAT.." could have effect on the logon process ?
- "Mon Jun 1 14:27:34 2020 UDP link local: (not bound)" is it normal that no local IP is set at this stage of negotiation ?
- As the main server keys were produced at the first install, do I have to cancel them and re-init openVpn server (what I do not know how to do) ?
I will appreciate some help for the community, which I thanks in advance ...
Nicolas