Welcome, Guest. Please login or register.
Did you miss your activation email?
Tuesday 26 November 2024, 02:19:20 am

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14261 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  VPN Support
| | |-+  2.3 RC1 - vpn is not working
0 Members and 0 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: 2.3 RC1 - vpn is not working  (Read 25917 times)
wharfratjoe
Full Member
***
Offline Offline

Posts: 17


« on: Tuesday 29 September 2009, 04:29:24 am »

I have used the following client side config since 2.1, however it is not working in 2.3RC1. I have used self signed certificate since 2.1.

Client Config

client
float
dev tap
proto udp
port 1194
remote x.x.x.x
resolv-retry infinite
nobind
persist-key
persist-tun
ca vpnserver-hostcert.pem
auth-user-p
pull
comp-lzo


I am receiving the following errors:

Mon Sep 28 11:17:14 2009 OpenVPN 2.1_rc15 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Nov 19 2008
Mon Sep 28 11:17:23 2009 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Mon Sep 28 11:17:23 2009 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Sep 28 11:17:23 2009 LZO compression initialized
Mon Sep 28 11:17:23 2009 UDPv4 link local: [undef]
Mon Sep 28 11:17:23 2009 UDPv4 link remote: x.x.x.x:1194
Mon Sep 28 11:17:23 2009 WARNING: this configuration may cache pwords in memory -- use the auth-nocache option to prevent this
Mon Sep 28 11:17:24 2009 VERIFY ERROR: depth=1, error=self signed certificate in certificate chain: /C=IT/O=efw/CN=efw_CA
Mon Sep 28 11:17:24 2009 TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
Mon Sep 28 11:17:24 2009 TLS Error: TLS object -> incoming plaintext read error
Mon Sep 28 11:17:24 2009 TLS Error: TLS handshake failed
Mon Sep 28 11:17:24 2009 SIGUSR1[soft,tls-error] received, process restarting
Mon Sep 28 11:17:26 2009 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for

Updated: open ticket for this: http://bugs.endian.com/view.php?id=2223
Logged
wharfratjoe
Full Member
***
Offline Offline

Posts: 17


« Reply #1 on: Tuesday 29 September 2009, 04:42:00 pm »

this is resolved. i was using a ipsec cert...duh!
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.063 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com