I was given a configuration file generated by Sophos like this
ssl_vpn_config.ovpn
Code: Select all
client
dev tun
proto tcp
verify-x509-name "C=IT, ST=xxx, L=xxx, O=xxx, OU=OU, CN=SophosApplianceCertificate_xxx, emailAddress=xxx"
route remote_host 255.255.255.255 net_gateway
resolv-retry infinite
nobind
persist-key
persist-tun
<ca CERTIFICATE>
<cert CERTIFICATE>
<key RSA PRIVATE KEY>
auth-user-pass
cipher AES-256-CBC
auth SHA512
comp-lzo yes
;can_save no
;otp no
;run_logon_script no
;auto_connect
route-delay 4
verb 3
reneg-sec 0
remote vpnlu.xxx.it xxx
Settings > Networks > VPN > Import from File >
error message
Unable to import VPN connection
I think the problem is this instruction whose syntax does not conform to OpenVPN
route remote_host 255.255.255.255 net_gateway
how should it be rewritten with OpenVPN syntax?
I'm not sure, but this instruction seems to mean: allow the client to connect to all IPs on the web outside the VPN intranet
if I launch the VPN connection from cli, apparently it works
Code: Select all
$ sudo openvpn --config ssl_vpn_config.ovpn
Enter Auth Username: rea.biagio
🔐 Enter Auth Password: ***
. . .
. . .
. . .
2023-11-03 13:01:34 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2023-11-03 13:01:34 Initialization Sequence Completed
I open the browser and try to connect to the VPN's internal corporate URLs, but the connection times out
They also suggest me to check if the routes have been imported, but I don't understand what I should check
Thanks from now for the replies