EFW Support

Support => VPN Support => Topic started by: openaspace on Saturday 13 December 2014, 06:52:39 am


Title: Connection tunnelblick in "still waiting time out"
Post by: openaspace on Saturday 13 December 2014, 06:52:39 am
Hello.
I'm using endian firewall under virtualbox, all works correctly except the openvpn server,

I have created a  new server certificate, opened the access to the port 1193 from the system access firewall section (yes i don't use 1194), downloaded the certificate within the configuration file folder that have this configuration:
Code:
client
dev tap
proto udp
remote 2.224.66.63 1193
resolv-retry infinite
nobind
persist-key
ca jasango-clientcert.pem
auth-user-pass
comp-lzo
verb 3

client
dev tap
proto udp
remote MY-IP-ADDRESS 1193
resolv-retry infinite
nobind
persist-key
persist-tun
ca myserverdownloadedcertificate.pem
auth-user-pass
comp-lzo
verb 3

And when I lunch the connection from the mac cliente tunnelblick it remain in still waiting state.

The only error log that i see is this, but it refer to a certificate that I not use:
openvpn[28904]: Options error: --key fails with "/var/efw/vpn/ca/certs/192.168.1.2key.pem": No such file or directory

The firewall log seem to be correctly and the port result open:
INPUTFW:ALLOW:3:l3 UDP (eth1) my-intenet-ip:53626 -> 192.168.1.2:1193-MAC=08:00:27:32:03:94:00:60:3b:26:e2:a7:08:00 LEN=42 TOS=00 PREC=0x00 TTL=60 ID=23455 LEN=22 MARK=1004

How to find other specific logs?


Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media