Having major OpenVPN difficulties [Self-solved]

EDIT: the problem was caused by this, in my /etc/openvpn/server.conf:
log /var/log/openvpn/openvpn.log
log-append /var/log/openvpn/openvpn.log
ONLY ONE of those two lines is necessary; they are two different ways of logging to openvpn.log.
Now that it's finally done and I have a working OpenVPN server, I almost feel like writing about some of my discoveries and the things I learned along the way in the Wiki article.
Original post:
The openvpn daemon script is reporting failure, and when I try openvpn from the command line (as "/usr/sbin/openvpn --verb 9 --conf /etc/openvpn/server.conf") I get no output, no messages, nothing; it's as if I hit enter on an empty line. Is there any way to monitor what the program is doing when it attempts to start up (i.e. get information about what's going on), so that I can finally diagnose the problem properly and be finished with this time-hungry pet project?
For at least a week I have been trying and trying and trying to get an OpenVPN server successfully running on my Arch Linux machine, and now I'm at my wits' end. I decided to post after having spent the past seven hours reading the OpenVPN FAQ's and HOWTO's, the manual page, and the partially obsolete wiki pages about configuring OpenVPN.
As for my setup, here's a rough chronology of what I have accomplished so far. I'm pretty sure I took all the necessary steps;
1. I set up a bridge; my Arch box was previously acting as a gateway with a class A subnet. To continue having this functionality while adding a bridge so that OpenVPN could run in bridged mode, I configured a bridge, br0, to serve the same essential purpose as eth1 initially did in controlling the subnet. Essentially, I made the following changes (taking advice from http://www.openvpn.net/index.php/open-s … ging.html):
/etc/rc.conf, FROM:
eth0="dhcp"
eth1="10.1.1.1 netmask 255.255.255.224 broadcast 10.1.1.31"
TO:
eth0="dhcp"
eth1="eth1 0.0.0.0 promisc up"
br0="br0 10.1.1.1 netmask 255.255.255.224 broadcast 10.1.1.31"
INTERFACES=(eth0 eth1 br0)
Also, I added "tun" and "bridge" to the MODULES list in rc.conf, and added to /etc/conf.d/bridges:
bridge_br0="eth1"
BRIDGE_INTERFACES=(br0)
After adding the following firewall rules, everything was working as it was previously (machines could connect to the bridge-controlled subnet through eth1 and hence to the WAN);
iptables -N fw-interfaces
iptables -A FORWARD -j fw-interfaces
iptables -A fw-interfaces -i br0 -j ACCEPT
iptables -A fw-interfaces -i eth1 -j ACCEPT
iptables -A fw-interfaces -i tap0 -j ACCEPT
iptables -t nat -A POSTROUTING -s 10.42.144.0/16 -d 10.42.144.0/16 -j ACCEPT
iptables -t nat -A POSTROUTING -s 10.42.144.0/16 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 10.42.144.0/16 -o eth0 -j MASQUERADE
Furthermore, the following is written in /etc/dnsmasq.conf:
listen-address=10.1.1.1
dhcp-range=10.1.1.2,10.1.1.5,24h
2. I wrote init scripts for adding a virtual interface (tap0) to be used by OpenVPN; Since I want to be able to use the bridge/gateway when OpenVPN isn't running (since my desktop computer uses the gateway!) and most of the openvpn init scripts out there (on the community wiki / OpenVPN website) create and destroy bridges as needed by the OVPN daemon, I decided to keep my bridge configuration as it is and put the necessary commands for adding a virtual tap device, configuring it and attaching it to the existing bridge (and finally attempting to start OpenVPN) in /etc/rc.local, and to write these commands I referred to http://www.openvpn.net/index.php/open-s … dging.html ;
/usr/sbin/openvpn --mktun --dev tap0
brctl addif br0 tap0
ifconfig tap0 0.0.0.0 promisc up
/etc/rc.d/openvpn start
3. I took the necessary steps to configure openvpn; I generated the client/server keys, copied them to /etc/openvpn/ and wrote my server configuration file as follows:
mode server
port 1194
proto udp
dev tap0
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
server-bridge 10.1.1.1 255.255.255.224 10.1.1.6 10.1.1.30 # I set this option using the instructions at http://openvpn.net/index.php/open-source/faq.html#bridge-addressing, since I already use dnsmasq on the first 4 available client addresses on the subnet
client-to-client
comp-lzo
user nobody # I have tried leaving this line commented out
group nobody # I have tried leaving this line commented out
status /var/log/openvpn/openvpn-status.log
log /var/log/openvpn/openvpn.log
log-append /var/log/openvpn/openvpn.log
verb 9
Also, for the daemon script I'm using with the one supplied in the Arch package, and verified that the command it uses for starting the daemon isn't broken; I put "echo" before the command to see what it was, and it put out:
/usr/sbin/openvpn --daemon --writepid /var/run/openvpn/server.pid --cd /etc/openvpn --config /etc/openvpn/server.conf
Is there something I'm missing? should I change permissions on any of the key files or directories that the daemon will be using?
Last edited by deconstrained (2009-12-06 04:43:55)

To suppress this message:
NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
put
script-security 3
in your /etc/openvpn/openvpn.conf. The following one:
VERIFY ERROR: depth=1, error=self signed certificate in certificate chain
may suggest that your client has no access to CA certificates. Ensure this part is set up as following:
ca /etc/openvpn/ca.crt
cert /etc/openvpn/user.crt
key /etc/openvpn/user.key
ns-cert-type server
Would you mind pasting the exact content of your /etc/openvpn/openvpn.conf?
Edit: is your OpenVPN instructed to update /etc/resolv.conf once the connection is established? Do you have a file with your password in your config directory and a line in the config file pointing it, like this:
auth-user-pass /etc/openvpn/password
Last edited by bohoomil (2012-05-11 14:09:30)

Similar Messages

  • Still having major importing difficulties - even with new update to 6.0.3

    I am at the point of despair. I had SO hoped that the new windows updates and iTunes 6.0.3 would solve my ongoing problems with updating but it doesn't.
    After a varying length of time while importing (second or two or during 2nd or third track) iTunes freezes and won't respond even to Ctrl Alt Del and computer needs a restart. Happens with any CD in either drive. Tried installing with and without Norton running and it still crashes.
    I can buy music on line fine and sync this to iPod just can't import it from CDs.
    The only thing different this time is that I get error (-50) when trying to import from the F drive rather than just immediate crash.
    Diagnostics are here again for info. Thanks in anticipation
    Microsoft Windows XP Professional Service Pack 2 (Build 2600)
    GBT_ AWRDACPI
    iTunes 6.0.3.5
    CD Driver 2.0.4.3
    CD Driver DLL 2.0.3.2
    UpperFilters: GEARAspiWDM (2.0.4.3),
    Video Driver: NVIDIA GeForce4 MX 440\GeForce4 MX 440
    Found aspi32 running.
    IDE\DiskST380021A______________________________3.19___, Bus Type ATA, Bus Address [1,0]
    IDE\DiskWDCWD1200BB-22GUA0____________________08.02D08, Bus Type ATA, Bus Address [0,0]
    IDE\CdRomSAMSUNGDVD-ROM_SD-616Q_________________F404___, Bus Type ATA, Bus Address [0,0]
    IDE\CdRomNEC_DVD_RW_ND-4550A____________________1.06___, Bus Type ATA, Bus Address [1,0]
    If you have multiple drives on the same IDE or SCSI bus, these drives may interfere with each other.
    Some computers need an update to the ATA or IDE bus driver, or Intel chipset. If iTunes has problems recognizing CDs or hanging or crashing while importing or burning CDs, check the support site for the manufacturer of your computer or motherboard.
    Current user is administrator.
    D: SAMSUNG DVD-ROM SD-616Q, Rev F404
    Audio CD in drive.
    Found 22 songs on CD, playing time 78:07 on Audio CD.
    Track 1, start time 00:02:00
    Track 2, start time 03:35:20
    Track 3, start time 07:20:42
    Track 4, start time 12:25:06
    Track 5, start time 15:46:63
    Track 6, start time 18:52:28
    Track 7, start time 22:23:44
    Track 8, start time 27:51:56
    Track 9, start time 32:02:07
    Track 10, start time 36:41:12
    Track 11, start time 38:45:02
    Track 12, start time 42:27:67
    Track 13, start time 44:26:10
    Track 14, start time 49:49:50
    Track 15, start time 52:44:31
    Track 16, start time 55:33:74
    Track 17, start time 57:51:19
    Track 18, start time 59:46:03
    Track 19, start time 63:40:39
    Track 20, start time 67:42:64
    Track 21, start time 71:35:17
    Track 22, start time 74:45:01
    Audio CD reading succeeded.
    Get drive speed succeeded.
    F: _NEC DVD_RW ND-4550A, Rev 1.06
    Audio CD in drive.
    Found 17 songs on CD, playing time 59:18 on Audio CD.
    Track 1, start time 00:02:00
    Track 2, start time 05:25:00
    Track 3, start time 08:37:70
    Track 4, start time 11:09:70
    Track 5, start time 17:21:72
    Track 6, start time 20:42:10
    Track 7, start time 23:30:12
    Track 8, start time 28:16:62
    Track 9, start time 29:52:65
    Track 10, start time 32:32:05
    Track 11, start time 34:42:32
    Track 12, start time 35:43:07
    Track 13, start time 38:53:70
    Track 14, start time 45:36:07
    Track 15, start time 51:33:62
    Track 16, start time 52:55:55
    Track 17, start time 57:29:57
    Audio CD reading succeeded.
    Get drive speed succeeded.
    The drive CDR speeds are: 8 16 24 32 40 48.
    The drive CDRW speeds are: 8.
    The drive DVDR speeds are: 8.
    The drive DVDRW speeds are: 8.
    Here are the diagnos

    Have now even repaired windows and it still hangs. Apart from totally wiping my computer and starting from scratch again any further ideas??

  • I am having major issues with links in keynote! Even though the links (a navigation system) are on the master page, they are only working on some of my slides. Anyone have ideas on how to fix this or similar issues? Help!

    I am having major issues with links in keynote! Even though the links (a navigation system) are on the master page, they are only working on some of my slides. Anyone have ideas on how to fix this or similar issues? Help!
    I have created a navigation system on the master pages and set the presentation to links only mode. I also have other links scattered throughout the program, like a linkable table of contents, etc. Some of them work, some of them don't. Not sure why. Anyone out there having similar issues? Or have any idea on how I can solve this issue? Any help would be appreciated!
    Thanks!

    Links should not create any problems in Keynote.  If they are set up correctly on text, the text will be underlined. Objects that have links will have a curved arrow bottom right, if you click the arrow a popup will display the link information.
    Try this repair for Keynote,  ensure you complete all the tasks and in the order shown:

    delete all the iWork applications if you have them, not just Keynote, using Appcleaner from Mac Update, its a freeware application

    empty the trash:  Finder > Empty Trash

    Shut down your Mac, wait 30 seconds, then power on the Mac, immediately after the start chime, hold down the Shift key
    When you see the grey Apple symbol and progress indicator (a spinning gear), release the Shift key.
    If you are prompted to log in, type your password, then hold down the Shift key again as you click Log in.
    4  
    Let the Mac fully boot up, it will take longer as the OS is repairing the drive

    when fully booted, go to Applications > Utilities > Disc Utility; click on the boot drive then First Aid tab and click  repair disc permissions

    when complete, restart the Mac normally, Apple menu > Restart

    install Keynote from the Mac App Store
    let us know if this helped

  • Having major issues with InDesign CS6. will upgrade fix???

    Having major issues with InDesign CS6. Not only is it crashing, but it is corrupting the existing file.  Then when I relaunch, it is not allowing me to open the file again.
    In another instance, yesterday I opened an file created 3 months ago and it allowed me to make changes, however I could not save them to the existing file, or not even to a new name.
    I had to copy each layer on each page to create a new document.  NOT GOOD!!!  Just saw that ADOBE has an update for InDesign.  WILL THIS FIX THE PROBLEM??

    Yes, I would certainly get the latest update. That we often solve issues like these, for this is not normal. Some further tips would be quite InDesign, then to trash your InDesign preferences and then re-start InDesign (it will rebuild them again). Some further areas to look into would be:
    * Corrupt Font(s) (or corrupt font caches - see below)
    * Corrupt Image(s)
    * Power Failures (power surges)
    * Placing images via drag-and-drop from an Internet page
    * Working on an InDesign file over a network or on a remote server
    If all else fails, we as Markzware (I work for them) also offer a Service to fix corrupt InDesign documents. See:
    http://markzware.com/support/faq/recover-bad-file-service/
    Hopefully this helps you.
    David Dilling of
    Markzware

  • Anyone else having major issues with 1.1.4?

    So I updated to Firmware 1.1.4 a day or two after it came out and I've been having major issues. This is on a phone purchased on launch day that has not been jailbrokened or hacked in anyway.
    Battery life...when the phone actually works, is down drastically. I went from 2.5 days with Bluetooth and Wi-fi on to about 12 hours at one time.
    Wi-fi...when it works, just cuts in and out even when the signal should be all full strength.
    Clock...even though it is set to sync with network time, can be accurate one minute and lags behind as much as 15 minutes.
    I've done numerous restores, both from a backup file and setting the phone up as a new phone. Nothing seems to fix the problem so far. Has anyone else run into these issues and/or know of how to fix it.
    I was contemplating downgrading the firmware to 1.1.3, but I don't believe there is an official way to do it.
    Any input would be appreciated.

    I have exactly the same issues, After the Update the sound quality of my calls dropped drastically! I tought first I got a cold or something like that...but it was not I cannot hear as clearly as I used to before and increasing the volume does not solve anything!
    I also noticed that trsitionning from an application to another and especially using the home button to got to home page is getting slower. I need more time to lose safari and go to emails than before.
    My Memory usage is exactly the same as I havent added anything to my library or so. Aroud 3.5 GB free.
    Anyone with same symptoms?

  • IMessage having major glitches

    I have a MacBook Pro with retina, late 2012 model, 16gb ram 2.6GHz i7 processor with a 500gb flash processor. The problem is with iMessage. Whenever I send a message, it shows the red exclamation point beside the message, and I get a drop down from the app saying "Message not sent, try again?" and so I try it again. The message pops back down and this goes on indefinitely until I click cancel. But the strange part is, if I click try again or cancel, the red exclamation mark will stay BUT the message will apparently send because the recipient tells me they get the message. When they reply to me, they tell me they also get the red exclamation mark, but it still sends to me. They say this ONLY happens when they send to me. This same problem is also occurring on my ipad mini (non retina, iOS7) and my ipod touch 4th gen. But it gets even more complicated. On my ipad, the messages will NOT sync whatsoever, even the ones that "failed to send but sent anyway" from my computer, and I cannot send messages from my ipad period. I have restarted my ipad, logged out and logged back into imessage, but nothing cures it. My ipod touch however, sporting iOS6, can sync the messages sent/recieved from my computer annddd send messages from it, even though there is still a red exclamation mark appearing on that device as well. I'm really not sure how to solve this problem, but its verry annoying, expecially when it comes in bursts (happening for a few days every week for the past few weeks). Anyone know how to solve this?
    Thanks.

    SherwoodGirl wrote:
    Having major issues with InDesign CS6.
    Then post your qeustion on the Adobe forums is it's their software you're having problems with:
    http://www.adobeforums.com

  • HT204406 I am having a very difficult time with accessing my music from the cloud.  I need to have itunes open on my laptop in order for it to work.  And as soon as I close out itunes on my laptop, it gives me a warning that all users will be logged out. 

    I am having a very difficult time with accessing my music from the cloud.  I need to have itunes open on my laptop in order for it to work.  And as soon as I close out itunes on my laptop, it gives me a warning that all users will be logged out.  Help!!!

    Where are iTunes files located?
    No, I do not mean just the music.  Copying just the media/music files or the media folder creates problems.

  • HT6030 Having major Mail problems since I updated Maverick on my 27" iMac. Delays deleting emails and moving emails to other folders. Anyone else having this issue? If so, any known fixes?

    I have an iMac that around 3 years old. Just installed Mavericks when it first was released. I also have a Time Capsule (2TB) that runs my network to my other three Apple devices: iPad2, iPhone 5s and a new Apple TV. Having major Mail issues here. Everything is very delayed and extremely slow. Moving emails to other folders sometimes takes a few minutes and the same goes for deleting emails. Delete them and they don't go into the trash for several minutes. It's getting very frustrating to say the least. Mail also quits very often. Mail also will freeze with the little color ball spinning, therefore I would have to force quit Mail. When the errors occur, it's automatically sent to Apple but there hasn't been an update since 10.9.1 that has fixed it. Apparently, that update was only for gmail issues. Anyone having the same problem? Fixes please?

    I have my entire network and all Apple devices setup as IMAP, not POP. If your settings are setup as a POP account on all devices, emails will not erase when deleted on your other devices. Just something to keep in mind. I'm sure you're aware of this but just wanted to throw it out there. Google IMAP vs POP. However, it seems like your having the same issues as I am. I'm going to swing by an Apple store by me and speak to the genius bar and see if they can come up with something or are aware of this issue. Keep you posted.

  • Good day sir, please i just got an iPAD 4 and I have bee having a serious difficulties performing some operations on it of which  was told it is possible one of which is to create a microsoft word documents on my iPAD the second is attaching a file to y e

    Good day sir, please i just got an iPAD 4 and I have bee having a serious difficulties performing some operations on it of which  was told it is possible one of which is to create a microsoft word documents on my iPAD the second is attaching a file to y e mail in order too send Also, I have not been able to safe a download files on my iPAD as I do not have a download manager on it. Please, kindly send to me ways of getting these problems fixed as i am a young resarcher who sends a lot of mails and download as wel. Als, I am always on the move as this has propmted me in the first place to get an IPAD .
    Last but not the list II will equally wish to know if it will be possible for  me to use a pen to take seminar notes on my iPAD and safe the same on my iPAD fr later reference as it is done on other tablets ke samsung. I read somethng like stylus pen but I don't know how far. Please, kindly make an appropriate recommendaton for me and where i can get it. I reside in Turkey and currently a Ph.D stuudent in ine of the leading niversities in the country. Also, I will like to know if you ave ecoonomics text books that I can buy or published journas in apple store because i have searched but could not get  a desirerable ones.
    Once again, thanks for your anticipated prompt rely to my mail.
    Regards
    Wasu Fawole

    Have a look at the following:
    http://itunes.apple.com/sg/app/quickoffice-pro-hd-edit-office/id376212724?mt=8&l s=1
    http://itunes.apple.com/sg/app/office2-hd/id364361728?mt=8&ls=1
    http://itunes.apple.com/sg/app/documents-to-go-premium-office/id317107309?mt=8&l s=1
    http://itunes.apple.com/sg/app/polaris-office/id513188658?mt=8&ls=1

  • I am having major problems with my trackpad on my macbook pro.  I can no longer press down on the bottom left and right corners for it to click and follow my command.  Please can anyone help?

    I am having major problems with my track pad on my macbook pro.  Even though my settings haven't changed...my trackpad is no longer responding as it did before.  The left hand corner no longer clicks when I press it and my personal commands which I set up in preferences no longer seem to be workin.  Please help!

    Some websites have an internal mute or volume setting. If that's not the issue, see below.
    From the Safari menu bar, select
              Safari ▹ Preferences... ▹ Privacy ▹ Remove All Website Data...
    and confirm. Close the window. Then select
               ▹ System Preferences… ▹ Flash Player ▹ Advanced ▹ Delete All...
    In the sheet that opens, check the box marked
              Delete All Site Data and Settings
    then click Delete Data. Close the preference pane.

  • Im having major problems syncing my iphone 4 to itunes, this problem started after upgrading to ios 5. I have upgraded my itunes, turned sync by wifi on and off but still nothing. Everytime I try to sync my iphone it just says sync cancelled. Please help!

    Im having major problems syncing my iphone 4 to itunes, this problem started after upgrading to ios 5. I have upgraded my itunes, turned sync by wifi on and off but still nothing. Everytime I try to sync my iphone it just says sync cancelled. Please help.....

    I'm having the same problem ! Each time the sync starts it suddenly stops and says finished syncing

  • Having major issues with InDesign CS6

    Having major issues with InDesign CS6. Not only is it crashing, but it is corrupting the existing file.  Then when I relaunch, it is not allowing me to open the file again.
    In another instance, yesterday I opened an file created 3 months ago and it allowed me to make changes, however I could not save them to the existing file, or not even to a new name.
    I had to copy each layer on each page to create a new document.  NOT GOOD!!!

    SherwoodGirl wrote:
    Having major issues with InDesign CS6.
    Then post your qeustion on the Adobe forums is it's their software you're having problems with:
    http://www.adobeforums.com

  • Having Major Issues with Flash Player

    Using IE 8,  64 bit, flash player 11.4.402.287
    Having major issue with flash player! can not play a lot of games on FB. Games tell me that i need to update my Flash Player, PC says I have the latest version installed already.Ok, thought i would uninstall/reinstall...no go. Will not uninstall, says I need to close IE...which none are open.  This issue has been going on for weeks now.  I have done everything the help said to do and still not working.  I need HELP!

    im using the recent adobe flash player
    windows XP, internet explorer, 10.045.2, 32bit
    im not sure how this works, but im sure all that is correct:)
    if you need additional infomation, just let me know

  • Having major problems connecting my iphone 5s to any wi fi.  Have reloaded completely, just 'Fails"?

    Having major problems connecting my iphone 5s to any wi fi.  Have reloaded completely, just 'Fails"?

    Having major problems connecting my iphone 5s to any wi fi.  Have reloaded completely, just 'Fails"?

  • "This channel is having temporary technical difficulties" Digital Adapter

    Hi, I have recently received my digital adapters in the mail and in order to install these on the other tvs, I have used splitters on the Coax cable that plugs into the STB we had previously installed in the living room. After this i had one coax into the STB and another into one of the digital adapters. For some reason, the living room one is working, but the basement one we just tried to install is not working and is getting the message "This channel is having temporary technical difficulties." It might also be important to note that this setup did work for alittle then stopped working. I have tried reactivating and resetting the digital adapter, none of these worked. Does anyone know any possible solution? thank you

    Yep, after signing up last night and testing the online player successfully earlier, it comes to the game now and all I am getting is either an error message or I am just being 'logged out' and bombed back to a log in screen again!

Maybe you are looking for

  • Unable to create batch input

    could the error generated be because of the file?? the code is as follows: a<u>sset upload</u> report ZAST_UPL line-size 255. data:   remaining_life_yrs type p,         remaining_life_periods type p,         days type p,         remainder type p,    

  • Adobe Photoshop Elements 5 - Import to LR (60k images, success!)

    I have been struggling to get an import of my PSE 5 library to successfully complete into Lightroom without crashing. Ready to give up I tried the following which worked like a charm: In Photoshop Elements 5: File -> Catalog -> Recover I ran the abov

  • Footnotes in Page Layout

    I have a newsletter that I'm creating in the Page Layout mode. I would like to use a colored background for the entire document. The newsletter is for viewing on the internet so the colored background looks nice - the colored background covers the en

  • How to use Hierarchy Prompt

    Hi all, I want to filter my request based on the value chosen from a hierarchy prompt. I know that a filter on a hierarchy prompt can be applied in selection step by selecting "Override with Prompt". However, the hierarchy prompt filter only seems to

  • Securing remote FLVs

    First off, let me admit that I'm brand new to Flash. Ok ... now that I've gotten that out of the way I'll explain my situation. I'm hosting about 60 FLVs for a customer and he's accessing/calling the movies from his Web site when one of his customers