August 10, 201411 yr I have been trying to get this going for the last couple of day but i think i just dont know enough to be able to trouble shoot it properly. Any help would be greatly appreciated. NOTES -I have had this up and working for about a year and a half but then about 6 months ago ran into some problems and uninstalled it. I am now trying to get it going again. -I'm using cyberghost as a vpn. -I just tried PIN as a vpn and still had no luck. When i try to start it from that cmd line i get this root@Tower:~# /etc/rc.d/rc.openvpn start ca.crt cert.crt CyberGhost.ovpn Your ovpn file already have the option --> /boot/config/plugins/openvpn/password.txt Your ovpn file already have the option --> persist-remote-ip Your ovpn file already have the option --> status /tmp/openvpn/openvpn-status.log Starting Openvpn Tunnel: wait ......... nohup: redirecting stderr to stdout 26469 Not connected! tun0 don't established, check your account settings!!! Stoping Openvpn Tunnel..... ... OK 26469 Writing to the plugin config file.... This is my ovpn file. client remote at-openvpn.cyberghostvpn.com 443 dev tun proto udp resolv-retry infinite redirect-gateway def1 persist-key persist-remote-ip persist-tun nobind cipher AES-256-CBC auth MD5 ping 5 ping-exit 60 ping-timer-rem explicit-exit-notify 2 script-security 2 remote-cert-tls server route-delay 5 tun-mtu 1500 fragment 1300 mssfix 1300 verb 4 comp-lzo auth-user-pass /boot/config/plugins/openvpn/password.txt status /tmp/openvpn/openvpn-status.log This is 1/2 my log file, Sun Aug 10 11:35:45 2014 us=234077 auth_user_pass_file = '/boot/config/plugins/openvpn/password.txt' Sun Aug 10 11:35:45 2014 us=234084 OpenVPN 2.3.2 i486-slackware-linux-gnu [sSL (OpenSSL)] [LZO] [EPOLL] [eurephia] [MH] [iPv6] built on Jun 22 2013 Sun Aug 10 11:35:45 2014 us=234130 WARNING: file '/boot/config/plugins/openvpn/password.txt' is group or others accessible Sun Aug 10 11:35:45 2014 us=234648 LZO compression initialized Sun Aug 10 11:35:45 2014 us=234721 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ] Sun Aug 10 11:35:45 2014 us=234779 Socket Buffers: R=[163840->131072] S=[163840->131072] Sun Aug 10 11:35:45 2014 us=416704 Data Channel MTU parms [ L:1558 D:1300 EF:58 EB:135 ET:0 EL:0 AF:3/1 ] Sun Aug 10 11:35:45 2014 us=416765 Fragmentation MTU parms [ L:1558 D:1300 EF:57 EB:135 ET:1 EL:0 AF:3/1 ] Sun Aug 10 11:35:45 2014 us=416835 Local Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,cipher AES-256-CBC,auth MD5,keysize 256,key-method 2,tls-client' Sun Aug 10 11:35:45 2014 us=416854 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,cipher AES-256-CBC,auth MD5,keysize 256,key-method 2,tls-server' Sun Aug 10 11:35:45 2014 us=416911 Local Options hash (VER=V4): '8f40a5db' Sun Aug 10 11:35:45 2014 us=416950 Expected Remote Options hash (VER=V4): '6ce7e20d' Sun Aug 10 11:35:45 2014 us=417056 UDPv4 link local: [undef] Sun Aug 10 11:35:45 2014 us=417085 UDPv4 link remote: [AF_INET]37.235.62.209:443 Sun Aug 10 11:35:45 2014 us=558592 TLS: Initial packet from [AF_INET]37.235.62.209:443, sid=485b6a4a 6bb759a7 Sun Aug 10 11:35:45 2014 us=558775 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this Sun Aug 10 11:35:46 2014 us=271855 VERIFY ERROR: depth=1, error=self signed certificate in certificate chain: C=DE, O=CyberGhost VPN, OU=CyberGhost, CN=CyberGhost Sun Aug 10 11:35:46 2014 us=272105 TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed Sun Aug 10 11:35:46 2014 us=272130 TLS Error: TLS object -> incoming plaintext read error Sun Aug 10 11:35:46 2014 us=272149 TLS Error: TLS handshake failed Sun Aug 10 11:35:46 2014 us=272343 TCP/UDP: Closing socket Sun Aug 10 11:35:46 2014 us=272412 SIGUSR1[soft,tls-error] received, process restarting Sun Aug 10 11:35:46 2014 us=272442 Restart pause, 2 second(s) Sun Aug 10 11:35:48 2014 us=272608 Re-using SSL/TLS context Sun Aug 10 11:35:48 2014 us=272693 LZO compression initialized Sun Aug 10 11:35:48 2014 us=272813 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ] Sun Aug 10 11:35:48 2014 us=272903 Socket Buffers: R=[163840->131072] S=[163840->131072] Sun Aug 10 11:35:48 2014 us=272935 TCP/UDP: Preserving recently used remote address: [AF_INET]37.235.62.209:443 Sun Aug 10 11:35:48 2014 us=272963 Data Channel MTU parms [ L:1558 D:1300 EF:58 EB:135 ET:0 EL:0 AF:3/1 ] Sun Aug 10 11:35:48 2014 us=272987 Fragmentation MTU parms [ L:1558 D:1300 EF:57 EB:135 ET:1 EL:0 AF:3/1 ] Sun Aug 10 11:35:48 2014 us=273037 Local Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,cipher AES-256-CBC,auth MD5,keysize 256,key-method 2,tls-client' Sun Aug 10 11:35:48 2014 us=273055 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,cipher AES-256-CBC,auth MD5,keysize 256,key-method 2,tls-server' Sun Aug 10 11:35:48 2014 us=273095 Local Options hash (VER=V4): '8f40a5db' Sun Aug 10 11:35:48 2014 us=273134 Expected Remote Options hash (VER=V4): '6ce7e20d' Sun Aug 10 11:35:48 2014 us=273160 UDPv4 link local: [undef] Sun Aug 10 11:35:48 2014 us=273183 UDPv4 link remote: [AF_INET]37.235.62.209:443 Sun Aug 10 11:35:48 2014 us=410186 TLS: Initial packet from [AF_INET]37.235.62.209:443, sid=4b8eb046 7d749140 Sun Aug 10 11:35:49 2014 us=97737 VERIFY ERROR: depth=1, error=self signed certificate in certificate chain: C=DE, O=CyberGhost VPN, OU=CyberGhost, CN=CyberGhost Sun Aug 10 11:35:49 2014 us=97930 TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed Sun Aug 10 11:35:49 2014 us=97954 TLS Error: TLS object -> incoming plaintext read error Sun Aug 10 11:35:49 2014 us=97973 TLS Error: TLS handshake failed Sun Aug 10 11:35:49 2014 us=98110 TCP/UDP: Closing socket Sun Aug 10 11:35:49 2014 us=98165 SIGUSR1[soft,tls-error] received, process restarting Sun Aug 10 11:35:49 2014 us=98194 Restart pause, 2 second(s) Sun Aug 10 11:35:51 2014 us=98350 Re-using SSL/TLS context Sun Aug 10 11:35:51 2014 us=98417 LZO compression initialized Sun Aug 10 11:35:51 2014 us=98538 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ] Sun Aug 10 11:35:51 2014 us=98624 Socket Buffers: R=[163840->131072] S=[163840->131072] Sun Aug 10 11:35:51 2014 us=98656 TCP/UDP: Preserving recently used remote address: [AF_INET]37.235.62.209:443 Sun Aug 10 11:35:51 2014 us=98684 Data Channel MTU parms [ L:1558 D:1300 EF:58 EB:135 ET:0 EL:0 AF:3/1 ] Sun Aug 10 11:35:51 2014 us=98708 Fragmentation MTU parms [ L:1558 D:1300 EF:57 EB:135 ET:1 EL:0 AF:3/1 ] Sun Aug 10 11:35:51 2014 us=98759 Local Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,cipher AES-256-CBC,auth MD5,keysize 256,key-method 2,tls-client' Sun Aug 10 11:35:51 2014 us=98777 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,cipher AES-256-CBC,auth MD5,keysize 256,key-method 2,tls-server' Sun Aug 10 11:35:51 2014 us=98817 Local Options hash (VER=V4): '8f40a5db' Sun Aug 10 11:35:51 2014 us=98856 Expected Remote Options hash (VER=V4): '6ce7e20d' Sun Aug 10 11:35:51 2014 us=98883 UDPv4 link local: [undef] Sun Aug 10 11:35:51 2014 us=98907 UDPv4 link remote: [AF_INET]37.235.62.209:443 Sun Aug 10 11:35:51 2014 us=239334 TLS: Initial packet from [AF_INET]37.235.62.209:443, sid=4817a3f3 1fdb4bfb Sun Aug 10 11:35:51 2014 us=945006 VERIFY ERROR: depth=1, error=self signed certificate in certificate chain: C=DE, O=CyberGhost VPN, OU=CyberGhost, CN=CyberGhost Sun Aug 10 11:35:51 2014 us=945204 TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed Sun Aug 10 11:35:51 2014 us=945229 TLS Error: TLS object -> incoming plaintext read error Sun Aug 10 11:35:51 2014 us=945249 TLS Error: TLS handshake failed Sun Aug 10 11:35:51 2014 us=945387 TCP/UDP: Closing socket Sun Aug 10 11:35:51 2014 us=945443 SIGUSR1[soft,tls-error] received, process restarting Sun Aug 10 11:35:51 2014 us=945472 Restart pause, 2 second(s) Sun Aug 10 11:35:53 2014 us=945625 Re-using SSL/TLS context Sun Aug 10 11:35:53 2014 us=945698 LZO compression initialized Sun Aug 10 11:35:53 2014 us=945815 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ] Sun Aug 10 11:35:53 2014 us=945900 Socket Buffers: R=[163840->131072] S=[163840->131072] Sun Aug 10 11:35:53 2014 us=945930 TCP/UDP: Preserving recently used remote address: [AF_INET]37.235.62.209:443 Sun Aug 10 11:35:53 2014 us=945957 Data Channel MTU parms [ L:1558 D:1300 EF:58 EB:135 ET:0 EL:0 AF:3/1 ] Sun Aug 10 11:35:53 2014 us=945981 Fragmentation MTU parms [ L:1558 D:1300 EF:57 EB:135 ET:1 EL:0 AF:3/1 ] Sun Aug 10 11:35:53 2014 us=946030 Local Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,cipher AES-256-CBC,auth MD5,keysize 256,key-method 2,tls-client' Sun Aug 10 11:35:53 2014 us=946048 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,cipher AES-256-CBC,auth MD5,keysize 256,key-method 2,tls-server' Sun Aug 10 11:35:53 2014 us=946088 Local Options hash (VER=V4): '8f40a5db' Sun Aug 10 11:35:53 2014 us=946126 Expected Remote Options hash (VER=V4): '6ce7e20d' Sun Aug 10 11:35:53 2014 us=946151 UDPv4 link local: [undef] Sun Aug 10 11:35:53 2014 us=946174 UDPv4 link remote: [AF_INET]37.235.62.209:443 Sun Aug 10 11:35:54 2014 us=86414 TLS: Initial packet from [AF_INET]37.235.62.209:443, sid=3268779b 5c565bee Again your help is greatly appreciated.
August 10, 201411 yr When i run this its supposed to change dev tun to den tun5 in the ovpn file correct?
August 10, 201411 yr I'm not sure why but its not creating a tun interface at all. If i do ifconfig it just shows eth0 and lo.
August 10, 201411 yr After trying to uninstall and re install I noticed that when i try to update the plg it says the following. file /boot/packages/openssl-1.0.1h-i486-1.txz: downloading from ftp://ftp.sunet .se/pub/os/Linux/distributions/slackware//slackware-current/slackware/n/openssl-1.0.1h-i486-1.txz ... No such file `openssl-1.0.1h-i486-1.txz'. bad download, deleting Any ideas?
August 10, 201411 yr Author It looks like there have been a new version of OpenSSL on Slackware current . Need to update plugin.
August 11, 201411 yr Author Dl these and save them in /boot/extra ftp://ftp.sunet.se/pub/os/Linux/distributions/slackware//slackware-current/slackware/n/openssl-1.0.1i-i486-1.txz ftp://ftp.sunet.se/pub/os/Linux/distributions/slackware//slackware-current/slackware/a/openssl-solibs-1.0.1i-i486-1.txz reboot //Peter
August 11, 201411 yr After downloading and rebooting, the plugin did not load on reboot. The only changes i made where the addition of the 2 files to the /boot/extra location.
August 11, 201411 yr okay, finally got it going, i replaced the the two outdated slackware files and the md5 in the .plg with the ones that you posted then manually ran the install from the command line. Everything seems to be good now. Looks like the problem was with the outdated slackware files. It would stop the plugin update from installing after it got to the bad slackware file. Thanks for your help
August 12, 201411 yr okay, finally got it going, i replaced the the two outdated slackware files and the md5 in the .plg with the ones that you posted then manually ran the install from the command line. Everything seems to be good now. Looks like the problem was with the outdated slackware files. It would stop the plugin update from installing after it got to the bad slackware file. Thanks for your help Thanks for your solution. Was having the exact same problem... Cheers all,
August 18, 201411 yr Today I used the update button to go from Version 3.0.8 to Version 3.0.9. After rebooting and restarting the array my networking went down and I was getting permissions errors in syslog as well (which I did not capture). I rebooted again and reverted to 3.0.8 (before starting the array) and everything worked fine again. I will do some more experimenting and see if I can recreate the issue and capture the logs. I needed to get the array back up quickly so I skipped these steps on the first run. I am also having this problem, had to downgrade to get it working again
August 19, 201411 yr Author This must be some issue with the new OpenSSL that was added in current release! previuse version looks OK ? //Peter
August 21, 201411 yr Author Just checked latest version (in a VM), all are OK, it must be other plugin that force this to not work, running only openVPN plugin. //Peter
August 22, 201411 yr I am trying to set up mediasonic (subsonic audio server) on my v5 unraid server and want to open 1 or 2 ports so that this audio server can be accessible from WAN. I am using openvpn and it works quite well. How can I bypass specific ports, eg 4044-4045? TIA!
August 22, 201411 yr ^^^ bump. Spent an hr yesterday with ip rules with no dice. Can someone please help? I am trying to set up mediasonic (subsonic audio server) on my v5 unraid server and want to open 1 or 2 ports so that this audio server can be accessible from WAN. I am using openvpn and it works quite well. How can I bypass specific ports, eg 4044-4045? TIA!
August 23, 201411 yr ^^^ bump again, still waiting for help to get this resolved. The only reliable way to access the subsonic port (masonic version) is by stopping the VPN. Need a way to bypass couple of ports from the VPN. I am trying to set up mediasonic (subsonic audio server) on my v5 unraid server and want to open 1 or 2 ports so that this audio server can be accessible from WAN. I am using openvpn and it works quite well. How can I bypass specific ports, eg 4044-4045? TIA!
September 1, 201411 yr I also need help bypassing a Plex port from my VPN. I've asked several times before in both OpenVPN threads and nobody is helping. I would be really grateful if someone could help
September 1, 201411 yr I have a roundabout way of doing it and have written a script to take care of that. Seems to be working for a week now. The solution is buried in one of the earlier threads. I have it customized for pia + madsonic, who is your VPN provider? I also need help bypassing a Plex port from my VPN. I've asked several times before in both OpenVPN threads and nobody is helping. I would be really grateful if someone could help
September 1, 201411 yr I have a roundabout way of doing it and have written a script to take care of that. Seems to be working for a week now. The solution is buried in one of the earlier threads. I have it customized for pia + madsonic, who is your VPN provider? I also need help bypassing a Plex port from my VPN. I've asked several times before in both OpenVPN threads and nobody is helping. I would be really grateful if someone could help Private Internet Access (PIA)
Archived
This topic is now archived and is closed to further replies.