You are not logged in.

Pages: 1

#1 2009-03-15 08:15:35

devil_kc
Member
Registered: 2008-09-14
Posts: 93

openvpn problem

i need openvpn for work so it is very urgent:(

i installed openvpn, networkmanager, networtkmanager-openvpn from aur.
i have .conf file, user.crt, user.key and ca.crt. i imported .conf file in nm but it fails to connect to openvpn.
this is from daemons.log

Mar 15 10:04:43 nth-media-laptop NetworkManager: <info>  Starting VPN service 'org.freedesktop.NetworkManager.openvpn'...
Mar 15 10:04:43 nth-media-laptop NetworkManager: <info>  VPN service 'org.freedesktop.NetworkManager.openvpn' started (org.freedesktop.NetworkManager.openvpn), PID 3496
Mar 15 10:04:43 nth-media-laptop NetworkManager: <info>  VPN service 'org.freedesktop.NetworkManager.openvpn' just appeared, activating connections
Mar 15 10:04:43 nth-media-laptop nm-openvpn[3500]: Options error: Unrecognized option or missing parameter(s) in [CMD-LINE]:1: script-security (2.0.9)
Mar 15 10:04:43 nth-media-laptop nm-openvpn[3500]: Use --help for more information.
Mar 15 10:04:43 nth-media-laptop NetworkManager: <info>  VPN plugin state changed: 3
Mar 15 10:04:43 nth-media-laptop NetworkManager: <info>  VPN connection 'VPN connection 1' (Connect) reply received.
Mar 15 10:04:43 nth-media-laptop NetworkManager: <info>  VPN plugin failed: 1
Mar 15 10:04:43 nth-media-laptop NetworkManager: <info>  VPN plugin state changed: 6
Mar 15 10:04:43 nth-media-laptop NetworkManager: <info>  VPN plugin state change reason: 0
Mar 15 10:04:43 nth-media-laptop NetworkManager: <WARN>  connection_state_changed(): Could not process the request because no VPN connection was active.
Mar 15 10:04:43 nth-media-laptop NetworkManager: <info>  Policy set 'Auto ZyXEL' (wlan0) as default for routing and DNS.
Mar 15 10:04:55 nth-media-laptop NetworkManager: <debug> [1237107895.858952] ensure_killed(): waiting for vpn service pid 3496 to exit
Mar 15 10:04:55 nth-media-laptop NetworkManager: <debug> [1237107895.859044] ensure_killed(): vpn service pid 3496 cleaned up

pls help

Offline

#2 2009-03-15 08:32:35

tomk
Forum Fellow
From: Ireland
Registered: 2004-07-21
Posts: 9,839

Re: openvpn problem

Does this work?

openvpn /your/client.conf

You may need to load the tun module first.

If that works, it's a network manager problem. Not something I know about, but I'm sure somebody else does.

More generally, the line that says 'error' is probably a good place to start your troubleshooting.

Offline

#3 2009-03-15 08:37:46

devil_kc
Member
Registered: 2008-09-14
Posts: 93

Re: openvpn problem

openvpn client.conf                                                                                                                                   ──(Sun,Mar15)─┘
Sun Mar 15 10:33:26 2009 OpenVPN 2.0.9 i686-pc-linux [SSL] [LZO] [EPOLL] built on Jul 11 2008
Sun Mar 15 10:33:26 2009 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Sun Mar 15 10:33:26 2009 WARNING: file 'mzezelj.key' is group or others accessible
Sun Mar 15 10:33:26 2009 LZO compression initialized
Sun Mar 15 10:33:26 2009 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sun Mar 15 10:33:26 2009 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Sun Mar 15 10:33:26 2009 Local Options hash (VER=V4): '41690919'
Sun Mar 15 10:33:26 2009 Expected Remote Options hash (VER=V4): '530fdded'
Sun Mar 15 10:33:26 2009 UDPv4 link local: [undef]
Sun Mar 15 10:33:26 2009 UDPv4 link remote: 212.249.11.95:1194
Sun Mar 15 10:33:26 2009 TLS: Initial packet from 212.249.11.95:1194, sid=58b55f95 1ea861bc
Sun Mar 15 10:33:26 2009 VERIFY OK: depth=1, /C=CH/ST=Zug/L=Zurich/O=NTH/OU=IT/CN=NTH-VPN-CA/emailAddress=admin@nth.ch
Sun Mar 15 10:33:26 2009 VERIFY OK: nsCertType=SERVER
Sun Mar 15 10:33:26 2009 VERIFY OK: depth=0, /C=CH/ST=Zug/O=NTH/OU=IT/CN=server/emailAddress=admin@nth.ch

but then

Sun Mar 15 10:34:26 2009 TLS Error: TLS handshake failed
Sun Mar 15 10:34:26 2009 TCP/UDP: Closing socket
Sun Mar 15 10:34:26 2009 SIGUSR1[soft,tls-error] received, process restarting
Sun Mar 15 10:34:26 2009 Restart pause, 2 second(s)
Sun Mar 15 10:34:28 2009 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.

is it possible to set openvpn with something like: openvpn --usename --password?
becouse i have username and password for connecting to company vpn

Offline

#4 2009-03-15 09:12:26

tomk
Forum Fellow
From: Ireland
Registered: 2004-07-21
Posts: 9,839

Re: openvpn problem

I think it is, although it would not be regarded as very secure. Read the openvpn man page or the online docs.

Offline

#5 2009-03-15 11:41:51

devil_kc
Member
Registered: 2008-09-14
Posts: 93

Re: openvpn problem

sad it just wont work:( i hate it. i think that my work laptop will have to run ubuntu. on ubuntu it just works:(

Offline

#6 2009-03-25 23:31:48

fukawi2
Ex-Administratorino
From: .vic.au
Registered: 2007-09-28
Posts: 6,222
Website

Re: openvpn problem

devil_kc wrote:
Sun Mar 15 10:34:26 2009 TLS Error: TLS handshake failed
Sun Mar 15 10:34:26 2009 TCP/UDP: Closing socket
Sun Mar 15 10:34:26 2009 SIGUSR1[soft,tls-error] received, process restarting
Sun Mar 15 10:34:26 2009 Restart pause, 2 second(s)
Sun Mar 15 10:34:28 2009 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.

Evidentally there's an error at the TLS stage of the connection, so either your TLS is set wrong, or you don't need to use TLS and your config file is incorrect.

Are you familiar with our Forum Rules, and How To Ask Questions The Smart Way?

BlueHackers // fscanary // resticctl

Offline

Pages: 1

Board footer

Powered by FluxBB