VPN Won't Start
Posted: Fri Mar 15, 2013 4:46 pm
Good evening everyone,
As I am new to OpenVPN, and, as a matter of fact quite new to Linux as well, I seem to have some trouble getting the VPN up and running. The moment I try to start my VPN I get following error in response:
Since this is stating hardly anything I went for the logs - this is what happens during the attempt to start the server:
"Right on, I'll just adjust that script-security thingy to like 2" - is what popped into my mind. It seemed promising and still do actually, however, I'm yet again stuck. In order to apply the script-security I used:
The device (tap0) seems to be found and everything, but it'll go unresponsive after a few lines of output which are:
I already let it process (or whatsoever is happening..) for like 1h while heading out for lunch (Asian it was..) - nothing - not one single new line. Of course there were some more than the above mentioned, but I'm not able to pastebin it and the log is recording nothing unfortunately. Said missing lines, however, are not relevant. Version and stuff. In short: Too much typing!
Sooo, is anyone able to help me out of this? It would be grand and well appreciated, as I'd really like get this running.
Cheers!
Mirko
PS: in case you need / want to have a look into my config --> http://paste.ubuntu.com/5616001
As I am new to OpenVPN, and, as a matter of fact quite new to Linux as well, I seem to have some trouble getting the VPN up and running. The moment I try to start my VPN I get following error in response:
Code: Select all
Command Execution Error /etc/init.d/openvpn start <vpn-name>Code: Select all
Fri Mar 15 15:48:37 2013 OpenVPN 2.2.1 x86_64-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [eurephia] [MH] [PF_INET6] [IPv6 payload 20110424-2 (2.2RC2)] built on Mar 30 2012
Fri Mar 15 15:48:37 2013 NOTE: when bridging your LAN adapter with the TAP adapter, note that the new bridge adapter will often take on its own IP address that is different from what the LAN adapter was previously set to
Fri Mar 15 15:48:37 2013 NOTE: your local LAN uses the extremely common subnet address 192.168.0.x or 192.168.1.x. Be aware that this might create routing conflicts if you connect to the VPN server from public locations such as internet cafes that use the same subnet.
Fri Mar 15 15:48:37 2013 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Fri Mar 15 15:48:37 2013 WARNING: file 'keys/mq-intern/mq-openvpn.key' is group or others accessible
Fri Mar 15 15:48:37 2013 WARNING: file 'servers/MQ-VPN-INTERN/ta.key' is group or others accessible
Fri Mar 15 15:48:37 2013 Control Channel Authentication: using 'servers/MQ-VPN-INTERN/ta.key' as a OpenVPN static key file
Fri Mar 15 15:48:37 2013 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Mar 15 15:48:37 2013 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Mar 15 15:48:37 2013 TLS-Auth MTU parms [ L:1576 D:168 EF:68 EB:0 ET:0 EL:0 ]
Fri Mar 15 15:48:37 2013 TUN/TAP device tap0 opened
Fri Mar 15 15:48:37 2013 servers/MQ-VPN-INTERN/bin/MQ-VPN-INTERN.up tap0 1500 1576 init
Fri Mar 15 15:48:37 2013 WARNING: External program may not be called unless '--script-security 2' or higher is enabled. Use '--script-security 3 system' for backward compatibility with 2.1_rc8 and earlier. See --help text or man page for detailed info.
Fri Mar 15 15:48:37 2013 WARNING: Failed running command (--up/--down): external program fork failed
Fri Mar 15 15:48:37 2013 ExitingCode: Select all
sudo openvpn --script-security 3 --dev tap0Code: Select all
TUN/TAP device tap0 opened
UDPv4 link local (bound): [undef]
UDPv4 link remote: [undef]Sooo, is anyone able to help me out of this? It would be grand and well appreciated, as I'd really like get this running.
Cheers!
Mirko
PS: in case you need / want to have a look into my config --> http://paste.ubuntu.com/5616001