This forum is for general conversation and user-user networking.
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
-
TampaAF
- OpenVpn Newbie
- Posts: 3
- Joined: Wed Dec 28, 2011 11:57 pm
Post
by TampaAF » Thu Dec 29, 2011 12:32 am
I am new to openvpn. I have a Windows 7 OS laptop and a Ubuntu 11.10 machine I would like to use as the vpn server. After some searching most of the howto's are for bridging. Listed below is my server.conf. I might be missing a step but I do not have a tun0 under ifconfig and vpn fails to start.
Code: Select all
port 1194
proto udp
dev tun
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 10.8.0.0 255.255.255.0"
push "redirect-gateway def1"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
client-to-client
keepalive 10 60
comp-lzo
ping-timer-rem
persist-tun
persist-key
user nobody
group nogroup
log-append /var/log/openvpn
verb 3
Code: Select all
Wed Dec 28 08:42:12 2011 OpenVPN 2.2.0 i686-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [eurephia] [MH] [PF_INET6] [IPv6 payload 20110424-2 (2.2RC2)] built on Jul 4 2011
Wed Dec 28 08:42:12 2011 NOTE: your local LAN uses the extremely common subnet address 192.168.0.x or 192.168.1.x. Be aware that this might create routing conflicts if you connect to the VPN server from public locations such as internet cafes that use the same subnet.
Wed Dec 28 08:42:12 2011 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Wed Dec 28 08:42:12 2011 Cannot open dh1024.pem for DH parameters: error:02001002:system library:fopen:No such file or directory: error:2006D080:BIO routines:BIO_new_file:no such file
Wed Dec 28 08:42:12 2011 Exiting
-
Mimiko
- Forum Team
- Posts: 1564
- Joined: Wed Sep 22, 2010 3:18 am
Post
by Mimiko » Thu Dec 29, 2011 6:29 am
Cannot open dh1024.pem for DH parameters: error:02001002:system library:fopen:No such file or directory: error:2006D080:BIO routines:BIO_new_file:no such file
States very clearly. In your config you have to specify absolute path to any file you are using.
-
maikcat
- Forum Team
- Posts: 4200
- Joined: Wed Jan 12, 2011 9:23 am
- Location: Athens,Greece
-
Contact:
Post
by maikcat » Thu Dec 29, 2011 11:20 am
or you didnt build dh file at all...
-or-
you changed key length and you didnt correct the config file.
Michael.
Amiga 500 , Zx +2 owner
Long live Dino Dini (Kick off 2 Creator)
Inflammable means flammable? (Dr Nick Riviera,Simsons Season13)
"objects in mirror are losing"
-
TampaAF
- OpenVpn Newbie
- Posts: 3
- Joined: Wed Dec 28, 2011 11:57 pm
Post
by TampaAF » Fri Dec 30, 2011 7:16 pm
Well I am a noob. Didn't migrate the certs/keys out of the keys folder.
-
ajackson
- OpenVpn Newbie
- Posts: 1
- Joined: Thu Jan 05, 2012 9:33 am
Post
by ajackson » Thu Jan 05, 2012 9:34 am
I had a tun/tap interface configured under 11.04 to run some qemu/kvm sessions. Everything worked just fine until the online upgrade to 11.10 happened. After the upgrade the system can boot up and pretend to have no connections (nothing works - browser, mail etc). But the ping to the external IPs work well (google dns, for instance). "can boot up" means that there's another strange thing - sometimes networking is ok after booting the system up (with no changes in the configuration)!
-
Mimiko
- Forum Team
- Posts: 1564
- Joined: Wed Sep 22, 2010 3:18 am
Post
by Mimiko » Sat Jan 07, 2012 9:15 am
Check system logs for other services that starts up and may interfere with the iptable rules, and routing table.
