Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    [Solved] Can't start OpenVPN from GUI

    Scheduled Pinned Locked Moved OpenVPN
    6 Posts 3 Posters 1.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M Offline
      mrgoodkat
      last edited by

      Hey guys,

      I'm trying to setup openvpn but i never manage to get it started.

      It always fails when starting from webGUI

      
      openvpn[18862]: Assertion failed at crypto.c:168
      openvpn[18862]: Exiting due to fatal error
      

      If I run it from shell it works and I can establish a tunnel.

      Any ideas?

      Edit: It works now :D. I made a mistake pasting the ta.key into the gui. After countless hours trying to find the error I pasted all the certs and keys again and now it works.

      SG-2220

      1 Reply Last reply Reply Quote 0
      • D Offline
        Deviant0ne
        last edited by

        Other individuals with this issue have reported that switching the cipher to something else, i.e. AES-128-CBC 128 bit may correct the problem.

        1 Reply Last reply Reply Quote 0
        • M Offline
          mrgoodkat
          last edited by

          I'm using AES-128-CBC. It works when using the shell to start the tunnel.

          SG-2220

          1 Reply Last reply Reply Quote 0
          • D Offline
            Deviant0ne
            last edited by

            As a troubleshooting step, have you tried to change the cipher and bring up the tunnel in the GUI?

            1 Reply Last reply Reply Quote 0
            • M Offline
              mrgoodkat
              last edited by

              It only works with "cipher none" in the gui. I've made a cron job now to check on the status and restart it if needed. Just gotta live without the GUI ;)

              SG-2220

              1 Reply Last reply Reply Quote 0
              • C Offline
                cmb
                last edited by

                What do you have chosen for "Hardware Crypto" in your OpenVPN config? Is this on your SG-2220? I presume with the default crypto options under System>Advanced, having AES-NI enabled.

                Past instances of this were all in pre-release 2.2.0 versions with certain ciphers and certain hardware crypto. Those were attributable to a problem in OpenVPN that we got fixed in OpenVPN pre-2.2.0 release. But apparently there is still some combination of options there that triggers the same issue.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.