peter_sm

Community Developer
  • Posts

    2273
  • Joined

  • Last visited

  • Days Won

    1

Everything posted by peter_sm

  1. Some links to read..... please let me know what you come up with, and google is your friend [emoji23] https://www.linuxquestions.org/questions/linux-general-1/openvpn-client-can%27t-ping-host-by-name-433612/ https://serverfault.com/questions/749099/openvpn-server-can-ping-via-ip-but-not-via-hostname
  2. Looks like they have got bug in easyrsa 3.0.5. Branch 3.0.4 works fine. Try to 3.0.4 and test. unzip and rename to easy-rsa in your config folder EasyRSA-3.0.4.zip
  3. I have the same issue with cloudflare Origin Certificates for this. created a new A name same as hostname for unraid and pointed to my unraid IP. Maybe this way is not possible?
  4. Never seen this error, please check openvpn suport forum or try google http://www.letmegooglethat.com/?q=please+ensure+that+--tun-mtu+or+--link-mtu+is+equal+on+both+peers+--+this+condition+could+also+indicate+a+possible+active+attack+on+the+TCP+link
  5. The ovpn files is not from my plug-in. I don’t know what you trying to do.
  6. You find it here /boot/config/plugins/openvpnserver Post also Openvpnserver.ovpn in configuration path you set in the gui
  7. Works flawless :-) What server config do you have? What error log do you see? What client are you using ? Its' have been a major issue on iOS client, but now there is a update! It's have been an issue with easyrsa project, latest plugin DL now the correct version that are default branch. //Peter
  8. Du you have and see issue with the DNS? On my iphone I can brows computers and share on LAN by name. What is your settings in openvpnserver.conf ?
  9. New version available! New feature: Changed thew way to DL easyrsa, now it will DL the default branch instead of force DL the master branch. The master branch is still broken. So update the plugin and install the server again. FYI: The 3.0.5 is the default Branch //Peter
  10. Can you post result after you have run these commands ifconfig ip -4 route ls Edit It might be the issue with easyrsa! Please try this version. https://github.com/OpenVPN/easy-rsa/archive/v3.0.5.zip 1: DL and unzip to your folder. (Path to store Server, Clients config files and the Easyrsa V3) 2: rename to easy-rsa I do have an solution on the easyrsa as well in my latest update that will go public this weekend. Skickat från min iPhone med Tapatalk
  11. Can you try to set all default settings ? On log page in bottom red text, is that your default interface ?
  12. Hi Is br0 you default interface ? Do you have several network interface (eth0, eth1, bond0, bond1) Can you try to remove bond and try ? I have a new version soon to catch the right interface in a much better way! //Peter
  13. How did you install 3.0.4 ? Can you try to install master and comment out the line I show in a earlier post? Thanks. EDIT Work fine with above zip file 1: DL and unzip to your folder. (Path to store Server, Clients config files and the Easyrsa V3) 2: rename to easy-rsa Generating a 2048 bit RSA private key ..........+++ ...............................+++ writing new private key to '/mnt/disks/SSD1/appdata/myVPNserver_1/easy-rsa/easyrsa3/pki/private/ca.key.XXXXiQQ53v' Enter PEM pass phrase: Verifying - Enter PEM pass phrase: ----- You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Common Name (eg: your user, host, or server name) [Easy-RSA CA]: CA creation complete and you may now import and sign cert requests. Your new CA certificate file for publishing is at: /mnt/disks/SSD1/appdata/myVPNserver_1/easy-rsa/easyrsa3/pki/ca.crt spawn ./easyrsa build-server-full server nopass Generating a 2048 bit RSA private key ............................................................................................................................................................................+++ .......+++ writing new private key to '/mnt/disks/SSD1/appdata/myVPNserver_1/easy-rsa/easyrsa3/pki/private/server.key.XXXXSS2Egv' ----- Using configuration from ./openssl-easyrsa.cnf Enter pass phrase for /mnt/disks/SSD1/appdata/myVPNserver_1/easy-rsa/easyrsa3/pki/private/ca.key: Check that the request matches the signature Signature ok The Subject's Distinguished Name is as follows commonName :ASN.1 12:'server' Certificate is to be certified until Dec 31 06:55:06 2027 GMT (3650 days) Write out database with 1 new entries Data Base Updated Generating DH parameters, 2048 bit long safe prime, generator 2 This is going to take a long time .......................................................................................................+..............................................+.................................................................................. DH parameters of size 2048 created at /mnt/disks/SSD1/appdata/myVPNserver_1/easy-rsa/easyrsa3/pki/dh.pem ls -altr total 672 drwxrwxrwx 8 root root 234 Dec 24 17:00 easy-rsa/ drwxrwxrwx 25 root root 4096 Jan 2 07:46 ../ -rw-r----- 1 root root 1089 Jan 2 07:47 openvpnserver.ovpn -rw-rw-rw- 1 root root 652211 Jan 2 07:47 easy-rsa-3.0.4.zip -r-------- 1 root root 4547 Jan 2 07:55 server.crt -r-------- 1 root root 1172 Jan 2 07:55 ca.crt -r-------- 1 root root 1704 Jan 2 07:55 server.key -r-------- 1 root root 424 Jan 2 07:55 dh.pem -r-------- 1 root root 636 Jan 2 07:55 ta.key Skickat från min iPhone med Tapatalk
  14. Easyrsa if fixed in 3.0.4 https://github.com/OpenVPN/easy-rsa/archive/v3.0.4.zip However my plugin DL the master branch, so need to wait for they to update the master branch. You can DL the above zip file your openvpn folder and unzip it, then rename the folder to easyrsa and you are good to go. //Peter
  15. Install the OpenVPN server plugin (See my sig) and access your sever from openVPN client from your phone or computer. //Peter
  16. You can try to modify easyrsa with comments above. Skickat från min iPhone med Tapatalk
  17. Is the 2 setting above defaults? Or you changed these ? If so go for defaults. What is your default route interface ? eth0, br0 ? Verify this by the last iptables row(in red) on the log page. You should see your LAN with all settings set to defaults. I have an update to verify this much better in next release! Skickat från min iPhone med Tapatalk
  18. easyrsa3 are broken https://github.com/OpenVPN/easy-rsa/issues/168 Older releases can be found here https://github.com/OpenVPN/easy-rsa/releases Skickat från min iPhone med Tapatalk
  19. Loos like they broken the easyrsa3 ... I see this in my log :-( .
  20. Did a fresh installation and all works fine! please check all your settings.
  21. I see exactly the same on my configuration. I have almost same config as you. Don’t now how to solve it.... Skickat från min iPhone med Tapatalk
  22. Are you connecting from a windows computer ? can you access share with IP address? can you see other client on your LAN? //Peter
  23. Can you click on "Restore To Default values" and try again, some settings are not default, just for testing. Its differ from my default. //Peter
  24. Please add more info how you configured the server, or you maybe using all default settings?