Hi folks, complete noob here so please don't mind me if I sound like a complete idiot. I've been racking my brain and can't seem to get this for the life of me. I've spent an entire day reading, experimenting and trying everything to get this to work but nothing. I am trying to setup a private vpn on my pi zero. I followed this guy's tutorial https://www.youtube.com/watch?v=7a5CccDnhC8 and was successful in creating an encrypted key. It seems I can connect to my vpn via an app on mac os, but when I try importing the key profile into openvpn ios i get the following error message:
2017-09-17 20:03:33 ----- OpenVPN Start -----
OpenVPN core 3.1.2 ios arm64 64-bit built on Dec 5 2016 12:50:25
2017-09-17 20:03:33 Frame=512/2048/512 mssfix-ctrl=1250
2017-09-17 20:03:33 EVENT: CORE_ERROR PolarSSL: error parsing config private key : PKCS5 - Requested encryption or digest alg not available [ERR]
2017-09-17 20:03:33 Raw stats on disconnect:
2017-09-17 20:03:33 Performance stats on disconnect:
CPU usage (microseconds): 5438
Network bytes per CPU second: 0
Tunnel bytes per CPU second: 0
2017-09-17 20:03:33 EVENT: DISCONNECT_PENDING
2017-09-17 20:03:33 ----- OpenVPN Stop -----
OpenVPN core 3.1.2 ios arm64 64-bit built on Dec 5 2016 12:50:25
2017-09-17 15:34:43 Frame=512/2048/512 mssfix-ctrl=1250
2017-09-17 15:34:43 EVENT: PEM_PASSWORD_FAIL PolarSSL: error parsing config private key : PK - Private key password can't be empty [ERR]
2017-09-17 15:34:43 Raw stats on disconnect:
2017-09-17 15:34:43 Performance stats on disconnect:
CPU usage (microseconds): 6836
Network bytes per CPU second: 0
Tunnel bytes per CPU second: 0
2017-09-17 15:34:43 EVENT: DISCONNECT_PENDING
2017-09-17 15:34:43 ----- OpenVPN Stop -----
I've read extensively and found that it seems it has something to do in the way the private key was encrypted and not supported by openvpn on ios and I would have to manually change it to the 3des encryption format. I tried following the steps found here https://github.com/pivpn/pivpn/issues/171 but I don't know where and how to execute these commands. Is it under terminal? am I doing some special cmd on openssl? I mean i'm a complete noob when it comes to linux, I'm pretty comfortable with pc and mac, but this is kicking my ass. Everytime I tried executing any of these commands it would say not found or error. Any help would be greatly appreciated!!
IOS openvpn won't connect due to encryption & PolarSSL: erroe
-
- OpenVpn Newbie
- Posts: 1
- Joined: Wed Sep 20, 2017 2:58 pm
-
- OpenVPN Protagonist
- Posts: 11137
- Joined: Fri Jun 03, 2016 1:17 pm
Re: IOS openvpn won't connect due to encryption & PolarSSL: erroe
Don't follow that .. start here:
HOWTO: For OpenVPN Community Edition
You may have a key but it clearly is not a working one.
You have a Pi so you better learn Linux now.
This is also a good place to start:
viewtopic.php?f=36&t=24831
For your specific issue I would recommend using the latest Easy-RSA 3:
https://github.com/OpenVPN/easy-rsa/releases
A lot has changed regarding security recently and it may be that you have an old setting somewhere.