Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    OpenVPN unrecognized option

    OpenVPN
    3
    8
    119
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      calvin.quint last edited by

      If I connect to the OpenVPN server from the same network it goes through just fine. If I try to connect from outside the network I get

      [root@centos-server ~]# openvpn client.ovpn
      Options error: Unrecognized option or missing or extra parameter(s) in client.ovpn:3: data-ciphers (2.4.10)
      
      [root@centos-server ~]# openvpn client.ovpn --help                              Options error: I'm trying to parse "client.ovpn" as an --option parameter but I don't see a leading '--'
      Use --help for more information
      
      C 1 Reply Last reply Reply Quote 0
      • C
        calvin.quint @calvin.quint last edited by

        @calvin-quint said in OpenVPN unrecognized option:

        If I connect to the OpenVPN server from the same network it goes through just fine. If I try to connect from outside the network I get

        [root@centos-server ~]# openvpn client.ovpn
        Options error: Unrecognized option or missing or extra parameter(s) in client.ovpn:3: data-ciphers (2.4.10)
        
        [root@centos-server ~]# openvpn client.ovpn --help                              Options error: I'm trying to parse "client.ovpn" as an --option parameter but I don't see a leading '--'
        Use --help for more information
        
        dev ovpns1
        verb 1
        dev-type tun
        dev-node /dev/tun1
        writepid /var/run/openvpn_server1.pid
        #user nobody
        #group nobody
        script-security 3
        daemon
        keepalive 10 60
        ping-timer-rem
        persist-tun
        persist-key
        proto tcp4-server
        cipher AES-256-CBC
        auth SHA512
        up /usr/local/sbin/ovpn-linkup
        down /usr/local/sbin/ovpn-linkdown
        local 10.1.0.1
        engine cryptodev
        tls-server
        server 10.1.2.0 255.255.255.0
        client-config-dir /var/etc/openvpn-csc/server1
        tls-verify "/usr/local/sbin/ovpn_auth_verify tls 'pfsense' 1"
        lport 443
        management /var/etc/openvpn/server1.sock unix
        push "route 10.1.0.0 255.255.255.192"
        push "dhcp-option DNS 10.1.0.1"
        client-to-client
        duplicate-cn
        ca /var/etc/openvpn/server1.ca
        cert /var/etc/openvpn/server1.cert
        key /var/etc/openvpn/server1.key
        dh /etc/dh-parameters.2048
        tls-crypt /var/etc/openvpn/server1.tls-crypt
        ncp-ciphers AES-256-CBC
        persist-remote-ip
        float
        topology subnet
        
        1 Reply Last reply Reply Quote 0
        • bingo600
          bingo600 last edited by bingo600

          @calvin-quint said in OpenVPN unrecognized option:

          server 10.1.2.0 255.255.255.0

          That server ip is prob bot reachable from outside , is it the Server defs you have shown ?

          johnpoz C 2 Replies Last reply Reply Quote 0
          • johnpoz
            johnpoz LAYER 8 Global Moderator @bingo600 last edited by johnpoz

            ^ yeah 10.x.x.x is rfc1918 - its not going to be reachable from anything on the internet.

            Even if you port forward to your pfsense 10.x IP on whatever doing nat in front of you. You would need to make sure your client config points to your actual public IP.

            You can set with the other in the client export package.

            here.png

            C 1 Reply Last reply Reply Quote 0
            • C
              calvin.quint @johnpoz last edited by

              @johnpoz

              I put that in there for this forum. On my config it has a 73.X.X.X

              1 Reply Last reply Reply Quote 0
              • C
                calvin.quint @bingo600 last edited by

                @bingo600

                646339ec-c410-4b23-9e22-37d4817d1cf0-image.png

                bingo600 johnpoz 2 Replies Last reply Reply Quote 0
                • bingo600
                  bingo600 @calvin.quint last edited by

                  @calvin-quint

                  I noticed the centos mentioned a 2.4.xx client

                  Did you export that ovpn config via the client-export ?

                  If yes , did you try to enable "Legacy Client" ?

                  7789ea1c-cb51-44d9-98b3-0dcfba950218-image.png

                  1 Reply Last reply Reply Quote 0
                  • johnpoz
                    johnpoz LAYER 8 Global Moderator @calvin.quint last edited by

                    If your trying to use ovpn file with openvpn on centos.. That is not the way you do it ;) So yeah your going to have problems..

                    Something like this would be more like it
                    openvpn --config client.ovpn

                    1 Reply Last reply Reply Quote 0
                    • First post
                      Last post

                    Products

                    • Platform Overview
                    • TNSR
                    • pfSense Plus
                    • Appliances

                    Services

                    • Training
                    • Professional Services

                    Support

                    • Subscription Plans
                    • Contact Support
                    • Product Lifecycle
                    • Documentation

                    News

                    • Media Coverage
                    • Press
                    • Events

                    Resources

                    • Blog
                    • FAQ
                    • Find a Partner
                    • Resource Library
                    • Security Information

                    Company

                    • About Us
                    • Careers
                    • Partners
                    • Contact Us
                    • Legal
                    Our Mission

                    We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

                    Subscribe to our Newsletter

                    Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

                    © 2021 Rubicon Communications, LLC | Privacy Policy