clowrym Posted October 21, 2016 Share Posted October 21, 2016 The bridge was the issue, Once I shut down the VM & turned off the bridge, everything works as expected connecting to the test server. Quote Link to comment
mrvilla Posted November 1, 2016 Share Posted November 1, 2016 Hi. Have installed this server plugin on my unraid server and it seems to be working ok. I have done the initial installation and got 3 greens and also added a user. How do I get it to work with no-ip services? Quote Link to comment
peter_sm Posted November 1, 2016 Author Share Posted November 1, 2016 Did You created a user and tested to make an connection to the server ? Skickat från min iPhone med Tapatalk Quote Link to comment
clowrym Posted November 6, 2016 Share Posted November 6, 2016 I have a Dual wan connection with one Static & one Dynamic IP. Currently the OpenVPN server is showing the Dynamic IP as the wan IP, I have tried to set the server to the static IP, but the wan ip shown on the server setting page never changes & i can't seem to connect on the static ip. Where can I change that Static IP, I have tried stoping & restarting the OpenVPN server, but the IP either shows as blank, or as the dynamic, i can't see to get the static one to show up.... Any Idea's? Quote Link to comment
peter_sm Posted November 6, 2016 Author Share Posted November 6, 2016 I have a Dual wan connection with one Static & one Dynamic IP. Currently the OpenVPN server is showing the Dynamic IP as the wan IP, I have tried to set the server to the static IP, but the wan ip shown on the server setting page never changes & i can't seem to connect on the static ip. Where can I change that Static IP, I have tried stoping & restarting the OpenVPN server, but the IP either shows as blank, or as the dynamic, i can't see to get the static one to show up.... Any Idea's? Hi can you try these commands manually (These are the commands that displays the IP addresses.) /var/local/emhttp/plugins/openvpnserver/check-my-ip.sh and curl -s --max-time 15 --silent icanhazip.com /sbin/ip route | awk '/default/' /sbin/ip route | awk '/default/ { print $3 }' What is your Network Settings on unRAID? Quote Link to comment
clowrym Posted November 6, 2016 Share Posted November 6, 2016 logged in this morning using the Dynamic IP (75.*.*.*) OpenVPN showed the Dynamic IP, ran the commands you noted, it came back with my Static IP (205.*.*.*), after running the command's, refreshing the Page it now shows the proper Static Wan IP. I was also getting the following error in my syslog: Nov 5 21:20:14 Poweredge kernel: TCP: request_sock_TCP: Possible SYN flooding on port 1194. Sending cookies. Check SNMP counters. when I was having issues connecting last night, so I don't really know if the different wan IP showing in the openVPN page was really the problem. It seems to be working for now, I'll monitor and see what happens. Quote Link to comment
HellDiverUK Posted November 10, 2016 Share Posted November 10, 2016 How do I get it to work with no-ip services? Most routers work with no-ip. I use my router to do the ddns stuff, as it always updates the IP as long as it has an internet connection. It's more reliable than doing it any other way. Quote Link to comment
clowrym Posted November 12, 2016 Share Posted November 12, 2016 logged in this morning using the Dynamic IP (75.*.*.*) OpenVPN showed the Dynamic IP, ran the commands you noted, it came back with my Static IP (205.*.*.*), after running the command's, refreshing the Page it now shows the proper Static Wan IP. I was also getting the following error in my syslog: Nov 5 21:20:14 Poweredge kernel: TCP: request_sock_TCP: Possible SYN flooding on port 1194. Sending cookies. Check SNMP counters. when I was having issues connecting last night, so I don't really know if the different wan IP showing in the openVPN page was really the problem. It seems to be working for now, I'll monitor and see what happens. So an update on this, every couple days I get the same SYN flooding error in the syslog, at which point the OpenVPN plgin page becomes very slow, or unresponsive. Usually have to reboot the server to get any access. At which point openVPN plugin sometimes shows a wan IP, sometimes its blank. Quote Link to comment
manics Posted November 14, 2016 Share Posted November 14, 2016 Hi there I am running on unraid 6.2 I have the open vpn client conected to PIA which works ok My problrm is the vpn drops often and hangs the webui and the only option is to telnet into the server and reboot. trouble is as i have to reboot there are no logs Quote Link to comment
blknitro11 Posted November 16, 2016 Share Posted November 16, 2016 Hi all, I am using the OpenVPN client plugin on my Unraid 6.2.3 server. I am testing out Emby Server and Plex and would like to be able to access them from the outside. I have the firewall rules setup properly on my Sophos UTM (using that as my router) because i can get to Emby and plex when i have OpenVPN stopped. How do i have the Emby and Plex traffic bypass OpenVPN but leave everything else going through the OpenVPN tunnel? Please keep in mind i dont know to much about OpenVPN or how to do special routing, so if someone would be kind enough to walk me through it, it would be GREATLY appreciated! Thanks! NOTE: using Docker for both Emby and Plex Quote Link to comment
rmciii Posted November 19, 2016 Share Posted November 19, 2016 I have a sweet little unRAID server for downloading movies and TV shows using Plex Media Server with PlexConnect to view on any of my 3 TV's via Apple TV boxes. A few months ago, TWC started sending me ugly emails about my downloading so I installed the OpenVPN client and have not heard from them since (Great Product, easy setup!!). However, I cannot view my media library on my Apple TV's like before but I can still use a Mac/PC. So my question is, What do I bypass? And How do I bypass? so that PlexConnect works? Quote Link to comment
JonathanM Posted November 19, 2016 Share Posted November 19, 2016 I have a sweet little unRAID server for downloading movies and TV shows using Plex Media Server with PlexConnect to view on any of my 3 TV's via Apple TV boxes. A few months ago, TWC started sending me ugly emails about my downloading so I installed the OpenVPN client and have not heard from them since (Great Product, easy setup!!). However, I cannot view my media library on my Apple TV's like before but I can still use a Mac/PC. So my question is, What do I bypass? And How do I bypass? so that PlexConnect works? Instead of VPN'ing the whole server, I'd recommend using binhex's VPN enabled download clients, there are several variants available. Quote Link to comment
Runaround Posted December 27, 2016 Share Posted December 27, 2016 Greetings, I just tried to install this plugin on Unraid v6.2.4 and it gave the following error: Warning: file_put_contents(): Only 0 of 1 bytes written, possibly out of free disk space in /usr/local/emhttp/plugins/dynamix.plugin.manager/scripts/plugin on line 297 plugin: unable to create file: /var/log/plugins/openvpnserver The previous sections show to have completed correctly. Any ideas? Quote Link to comment
peter_sm Posted December 27, 2016 Author Share Posted December 27, 2016 Looks like you are running out of memory ? How much do you have installed? Run command df and take a look. Quote Link to comment
neuk34 Posted December 29, 2016 Share Posted December 29, 2016 Hello, I'm using sabnzbd and deluge. How to be sure that the both softwares are covering by the vpn? Thanks EDIT : You can used http://checkmytorrentip.upcoil.com/ to see if you are watchable. Quote Link to comment
JonathanM Posted December 30, 2016 Share Posted December 30, 2016 Hello, I'm using sabnzbd and deluge. How to be sure that the both softwares are covering by the vpn? Thanks Using this plugin? Dunno, I'm doing it the easy way, using Binhex's excellent VPN enabled dockers. He builds them with failsafes against accidental IP leakage, and as a bonus has privoxy baked in so you can use the same VPN tunnel to browse through if you want. I wouldn't use this plugin to connect to a VPN service, it's meant for you to create a private tunnel to allow secure remote access for your own devices when you are away from home. Quote Link to comment
peter_sm Posted December 31, 2016 Author Share Posted December 31, 2016 OpenVPN server plugin is updated with OpenVPN 2.4! According to the new 2.4 I would recommend all to regenerate new server certs and client files! The new features that are in OpenVPN 2.4 are not functional yet in some client application like iOS OpenVPN Connect These new features are not enabled as default setting! However default settings is a recommended settings to get a very good security, and of course your LAN is accessible with these settings. More info about changes in Version 2.4 .... https://github.com/OpenVPN/openvpn/blob/master/Changes.rst https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn24 Windows client can be downloaded from --> https://openvpn.net/index.php/open-source/downloads.html Plugin changes/updates 2016.12.31 Update of OpenVPN packages to 2.4.0 ! Updated list of selectable Encryption Ciphers. The list have the new cipher AEAD (GCM) data channel cipher. Update settings for compression. Now including the new LZ4 compression, which is slicker and faster. Added OpenDNS to DHCP options. Added a button to restart OpenVPN server. Added tls-crypt feature. This will also encrypt the client (and server) certificates that usually contain information that can be traced back to a person and/or machine. Small GUI updates. Quote Link to comment
Crackus Posted December 31, 2016 Share Posted December 31, 2016 Hi Peter, I've searched the whole post but I wasn't able to find a solution. I think it is pretty obvious but I'm lost I've upgraded to Unraid 6.2.4 and have updated OpenVPN Client plugin accordingly. But it doesn't work. Logs tell me that there is an error : Options error: Unrecognized option or missing or extra parameter(s) in [CMD-LINE]:1: config (2.4.0) Use --help for more information. and when I'v checked my configuration files, it seems that the plugin has changed it. The config file of my providers is initially made like this : client remote xx1.xxxxxx.net 443 dev tun proto tcp nobind persist-key persist-tun tls-auth ta.key 1 ca ca.crt cipher AES-256-CBC keysize 256 link-mtu 1560 comp-lzo auth-user-pass and it is updated like that after launching the plugin : client remote xx1.xxxxxx.net 443 proto tcp dev tun5nobind persist-key persist-tun tls-auth ta.key 1 ca ca.crt cipher AES-256-CBC keysize 256 link-mtu 1560 comp-lzo auth-user-pass /boot/config/plugins/openvpnclient/password.txt status /tmp/openvpn/openvpn-status.log The line 4 seems to be incorrect. I've added a return after the tun5 and save it but it doesn't work. Can you help me ? Thank you for your help and for your continuing effort to maintain this plugin. Have a nice day ! Guillaume Quote Link to comment
peter_sm Posted December 31, 2016 Author Share Posted December 31, 2016 Hi Peter, I've searched the whole post but I wasn't able to find a solution. I think it is pretty obvious but I'm lost I've upgraded to Unraid 6.2.4 and have updated OpenVPN Client plugin accordingly. But it doesn't work. Logs tell me that there is an error : Options error: Unrecognized option or missing or extra parameter(s) in [CMD-LINE]:1: config (2.4.0) Use --help for more information. and when I'v checked my configuration files, it seems that the plugin has changed it. The config file of my providers is initially made like this : client remote xx1.xxxxxx.net 443 dev tun proto tcp nobind persist-key persist-tun tls-auth ta.key 1 ca ca.crt cipher AES-256-CBC keysize 256 link-mtu 1560 comp-lzo auth-user-pass and it is updated like that after launching the plugin : client remote xx1.xxxxxx.net 443 proto tcp dev tun5nobind persist-key persist-tun tls-auth ta.key 1 ca ca.crt cipher AES-256-CBC keysize 256 link-mtu 1560 comp-lzo auth-user-pass /boot/config/plugins/openvpnclient/password.txt status /tmp/openvpn/openvpn-status.log The line 4 seems to be incorrect. I've added a return after the tun5 and save it but it doesn't work. Can you help me ? Thank you for your help and for your continuing effort to maintain this plugin. Have a nice day ! Guillaume Try new version! the modified ovpn should looks like this. Don't know why you have this line dev tun5nobind client proto udp dev tun5 remote sweden.privateinternetaccess.com 1197 resolv-retry infinite nobind persist-key persist-tun cipher aes-256-cbc auth sha256 tls-client remote-cert-tls server comp-lzo verb 1 reneg-sec 0 crl-verify crl.rsa.4096.pem ca ca.rsa.4096.crt auth-user-pass /boot/config/plugins/openvpnclient/password.txt status /tmp/openvpn/openvpn-status.log Quote Link to comment
Laucien Posted January 2, 2017 Share Posted January 2, 2017 Hi!, What I'm gonna ask is probably going to be really noob-y but I'm not exactly sure where to go to find the information (tried googling!). I have the plugin for the client running and from what I can tell from the logs it is correctly connecting to my VPN provider. On the settings page it says it's connected, it gives me a WAN IP that's different from my ISP's provided one and the Interface column shows "tun5". Also, if I run the Speedtest.net plugin from unRAID it matches me with a Miami based server that says it's something like 10 miles away... I'm more than 9 hours flight time from Miami in South America so that's another good sign haha. What I don't know is... is there a way to route all the traffic coming from a specific docker or VM through the VPN tunnel?. I have it set to 'Route specific IPs' and filled in a couple IPs in the 'webaddress.txt' file but don't know if that's doing anything haha. Basically what I'd like to do is to route all sabnzbd, Deluge and an IRC client (all 3 of them separate dockers) traffic through the VPN tunnel then maybe a VM too. The reason I'm trying to do it this way is because my current VPN provider only allows 1 connected device at any single time. Is that doable?. Thanks . Quote Link to comment
Crackus Posted January 2, 2017 Share Posted January 2, 2017 Hi Peter, I've searched the whole post but I wasn't able to find a solution. I think it is pretty obvious but I'm lost I've upgraded to Unraid 6.2.4 and have updated OpenVPN Client plugin accordingly. But it doesn't work. Logs tell me that there is an error : Options error: Unrecognized option or missing or extra parameter(s) in [CMD-LINE]:1: config (2.4.0) Use --help for more information. and when I'v checked my configuration files, it seems that the plugin has changed it. The config file of my providers is initially made like this : client remote xx1.xxxxxx.net 443 dev tun proto tcp nobind persist-key persist-tun tls-auth ta.key 1 ca ca.crt cipher AES-256-CBC keysize 256 link-mtu 1560 comp-lzo auth-user-pass and it is updated like that after launching the plugin : client remote xx1.xxxxxx.net 443 proto tcp dev tun5nobind persist-key persist-tun tls-auth ta.key 1 ca ca.crt cipher AES-256-CBC keysize 256 link-mtu 1560 comp-lzo auth-user-pass /boot/config/plugins/openvpnclient/password.txt status /tmp/openvpn/openvpn-status.log The line 4 seems to be incorrect. I've added a return after the tun5 and save it but it doesn't work. Can you help me ? Thank you for your help and for your continuing effort to maintain this plugin. Have a nice day ! Guillaume Try new version! the modified ovpn should looks like this. Don't know why you have this line dev tun5nobind client proto udp dev tun5 remote sweden.privateinternetaccess.com 1197 resolv-retry infinite nobind persist-key persist-tun cipher aes-256-cbc auth sha256 tls-client remote-cert-tls server comp-lzo verb 1 reneg-sec 0 crl-verify crl.rsa.4096.pem ca ca.rsa.4096.crt auth-user-pass /boot/config/plugins/openvpnclient/password.txt status /tmp/openvpn/openvpn-status.log Perfect ! It works now thanks to the update from ver. 2016.12.31 to 2016.12.31a Thanks for your help. Have a nice day, Guillaume Quote Link to comment
truckerCLOCK Posted January 4, 2017 Share Posted January 4, 2017 Hello I just updated to the newest release and also updated config files. Everything seems to be running fine but after checking the logs it shows errors. Should I be concerned? Tue Jan 3 21:07:25 2017 WARNING: file 'ta.key' is group or others accessible Tue Jan 3 21:07:25 2017 WARNING: file '/boot/config/plugins/openvpnclient/password.txt' is group or others accessible Tue Jan 3 21:07:25 2017 OpenVPN 2.4.0 x86_64-slackware-linux-gnu [sSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 29 2016 Tue Jan 3 21:07:25 2017 library versions: OpenSSL 1.0.2j 26 Sep 2016, LZO 2.09 Tue Jan 3 21:07:25 2017 TCP/UDP: Preserving recently used remote address: [AF_INET] Tue Jan 3 21:07:25 2017 UDP link local: (not bound) Tue Jan 3 21:07:25 2017 UDP link remote: [AF_INET] Tue Jan 3 21:07:25 2017 TLS Error: cannot locate HMAC in incoming packet from [AF_INET] Tue Jan 3 21:07:27 2017 TLS Error: cannot locate HMAC in incoming packet from [AF_INET] Tue Jan 3 21:07:31 2017 TLS Error: cannot locate HMAC in incoming packet from [AF_INET] Quote Link to comment
rmciii Posted January 4, 2017 Share Posted January 4, 2017 I have a sweet little unRAID server for downloading movies and TV shows using Plex Media Server with PlexConnect to view on any of my 3 TV's via Apple TV boxes. A few months ago, TWC started sending me ugly emails about my downloading so I installed the OpenVPN client and have not heard from them since (Great Product, easy setup!!). However, I cannot view my media library on my Apple TV's like before but I can still use a Mac/PC. So my question is, What do I bypass? And How do I bypass? so that PlexConnect works? Instead of VPN'ing the whole server, I'd recommend using binhex's VPN enabled download clients, there are several variants available. I installed the Deluge and SABnzbd VPN enabled docker applications and they work well. Thanks. Quote Link to comment
tr0910 Posted January 9, 2017 Share Posted January 9, 2017 I have been using your server plugin successfully for several years to access my server remotely. Today, I want to have my unRaid to be a client to another network where a vpn exists for the purpose of doing remote backups. I control both ends of this connection. OpenVPN server is running on unRaid and I want to run OpenVPN client via script for a few minutes to kick off the backupl I already have the remote backups running via rsync ssh, but now I want to take it to the next level whereby my local backup script fires off an IPMI wakeup call to the remote server over the VPN. So all I need is for a VPN to be created briefly where unRaid can see the other network like this. # Start the VPN tunnel to the network where my backup server is and where a raspberry pi is running an OpenVPN server 24/7 openvpn --config load_my_opvn_file # Now that the network is accessible use IPMI to start the backup server at the remote location ipmitool -I lan -H 192.168.1.95 -U ADMIN -P ADMIN chassis power on # Wait for unRaid to boot remotely and check that it is up sleep 180 # Check if the remote backup server is up and working # If everything is good, close the VPN connection and continue the backup by SSH # Once the backup has completed successfully via IPMI tell the remote backup server to gracefully shut down. ipmitool -I lan -H 192.168.1.95 -U ADMIN -P ADMIN chassis power soft Does this seem to be a reasonable way to use this? (I know this is different than the way most of you are using the client.) I installed the client VPN on unRaid 6.2.4, and then attempted to use the following command to test; openvpn --config /boot/openvpn/karli.ovpn Mon Jan 9 11:11:54 2017 OpenVPN 2.4.0 x86_64-slackware-linux-gnu [sSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 29 2016 Mon Jan 9 11:11:54 2017 library versions: OpenSSL 1.0.2j 26 Sep 2016, LZO 2.09 Mon Jan 9 11:11:54 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]23.127.yyy.xxx:1197 Mon Jan 9 11:11:54 2017 UDP link local: (not bound) Mon Jan 9 11:11:54 2017 UDP link remote: [AF_INET]23.127.yyy.xxx:1197 Mon Jan 9 11:11:55 2017 [server] Peer Connection Initiated with [AF_INET]23.127.yyy.xxx:1197 Mon Jan 9 11:11:56 2017 TUN/TAP device tun1 opened Mon Jan 9 11:11:56 2017 do_ifconfig, tt->did_ifconfig_ipv6_setup=0 Mon Jan 9 11:11:56 2017 /usr/sbin/ip link set dev tun1 up mtu 1500 Mon Jan 9 11:11:56 2017 /usr/sbin/ip addr add dev tun1 10.8.0.2/24 broadcast 10.8.0.255 RTNETLINK answers: File exists Mon Jan 9 11:11:56 2017 ERROR: Linux route add command failed: external program exited with error status: 2 RTNETLINK answers: File exists Mon Jan 9 11:11:56 2017 ERROR: Linux route add command failed: external program exited with error status: 2 Mon Jan 9 11:11:56 2017 Initialization Sequence Completed ^CMon Jan 9 11:29:58 2017 event_wait : Interrupted system call (code=4) Mon Jan 9 11:29:58 2017 /usr/sbin/ip addr del dev tun1 10.8.0.2/24 Mon Jan 9 11:29:58 2017 SIGINT[hard,] received, process exiting After sitting locked up for 20 minutes, I cancelled by hitting Ctrl C. I know this .ovpn file is good as I can use it via the Windows client to get access to that network. What am I doing wrong? Quote Link to comment
peter_sm Posted January 9, 2017 Author Share Posted January 9, 2017 Hi, "Initialization Sequence Completed" indicate that all went OK, and the process are running. and you stopped the connection with "ctrl +c" If you like to see the prompt after connection you need to add a & at the end of your command, like this openvpn --config /boot/openvpn/karli.ovpn & You can then check if the process are running with this command. ps -ef | grep openvpn Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.