Please Need Help for OpnVPN



  • Hi. I am new at OpnVPn. So i dont know too much about configuration. Please help me why i cant login to my server from my OpnVpn client. here is is error message and picture what i am getting when ever i tried to login.

    "Tue Apr 20 22:34:08 2010 OpenVPN 2.1.1 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Dec 11 2009
    Tue Apr 20 22:34:08 2010 NOTE: OpenVPN 2.1 requires '–script-security 2' or higher to call user-defined scripts or executables
    Tue Apr 20 22:34:08 2010 Cannot load certificate file ovpn_client1.crt: error:02001002:system library:fopen:No such file or directory: error:20074002:BIO routines:FILE_CTRL:system lib: error:140AD002:SSL routines:SSL_CTX_use_certificate_file:system lib
    Tue Apr 20 22:34:08 2010 Exiting"

    please help me to solve this problem. i want to use this service. I hope i will get the answer. Thank you. Take care and ba bye



  • @ll_hellBoy_ll:

    Hi. I am new at OpnVPn. So i dont know too much about configuration. Please help me why i cant login to my server from my OpnVpn client. here is is error message and picture what i am getting when ever i tried to login.

    "Tue Apr 20 22:34:08 2010 OpenVPN 2.1.1 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Dec 11 2009
    Tue Apr 20 22:34:08 2010 NOTE: OpenVPN 2.1 requires '–script-security 2' or higher to call user-defined scripts or executables
    Tue Apr 20 22:34:08 2010 Cannot load certificate file ovpn_client1.crt: error:02001002:system library:fopen:No such file or directory: error:20074002:BIO routines:FILE_CTRL:system lib: error:140AD002:SSL routines:SSL_CTX_use_certificate_file:system lib
    Tue Apr 20 22:34:08 2010 Exiting"

    please help me to solve this problem. i want to use this service. I hope i will get the answer. Thank you. Take care and ba bye

    I've marked the obvious problem in red above.  Your problem is with the client configuration.  Check that the file (in bold) is in the correct location (by default on Windows that'll probably be C:\Program Files\OpenVPN\config).  You probably want to check the rest of your client configuration and ensure that all files are in place.



  • hello. sir. After I fixed above things. now i got this error message.

    " Wed Apr 21 23:31:38 2010 us=328000 Current Parameter Settings:
    Wed Apr 21 23:31:38 2010 us=328000  config = 'my_black_box.ovpn'
    Wed Apr 21 23:31:38 2010 us=328000  mode = 0
    Wed Apr 21 23:31:38 2010 us=328000  show_ciphers = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  show_digests = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  show_engines = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  genkey = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  key_pass_file = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=328000  show_tls_ciphers = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000 Connection profiles [default]:
    Wed Apr 21 23:31:38 2010 us=328000  proto = tcp-client
    Wed Apr 21 23:31:38 2010 us=328000  local = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=328000  local_port = 0
    Wed Apr 21 23:31:38 2010 us=328000  remote = '85.72.53.132'
    Wed Apr 21 23:31:38 2010 us=328000  remote_port = 1194
    Wed Apr 21 23:31:38 2010 us=328000  remote_float = ENABLED
    Wed Apr 21 23:31:38 2010 us=328000  bind_defined = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  bind_local = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  connect_retry_seconds = 5
    Wed Apr 21 23:31:38 2010 us=328000  connect_timeout = 10
    Wed Apr 21 23:31:38 2010 us=328000  connect_retry_max = 0
    Wed Apr 21 23:31:38 2010 us=328000  socks_proxy_server = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=328000  socks_proxy_port = 0
    Wed Apr 21 23:31:38 2010 us=328000  socks_proxy_retry = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000 Connection profiles END
    Wed Apr 21 23:31:38 2010 us=328000  remote_random = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  ipchange = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=328000  dev = 'tun'
    Wed Apr 21 23:31:38 2010 us=328000  dev_type = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=328000  dev_node = 'tap0'
    Wed Apr 21 23:31:38 2010 us=328000  lladdr = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=328000  topology = 1
    Wed Apr 21 23:31:38 2010 us=328000  tun_ipv6 = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  ifconfig_local = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=328000  ifconfig_remote_netmask = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=328000  ifconfig_noexec = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  ifconfig_nowarn = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  shaper = 0
    Wed Apr 21 23:31:38 2010 us=328000  tun_mtu = 1500
    Wed Apr 21 23:31:38 2010 us=328000  tun_mtu_defined = ENABLED
    Wed Apr 21 23:31:38 2010 us=328000  link_mtu = 1500
    Wed Apr 21 23:31:38 2010 us=328000  link_mtu_defined = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  tun_mtu_extra = 0
    Wed Apr 21 23:31:38 2010 us=328000  tun_mtu_extra_defined = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  fragment = 0
    Wed Apr 21 23:31:38 2010 us=328000  mtu_discover_type = -1
    Wed Apr 21 23:31:38 2010 us=328000  mtu_test = 0
    Wed Apr 21 23:31:38 2010 us=328000  mlock = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  keepalive_ping = 0
    Wed Apr 21 23:31:38 2010 us=328000  keepalive_timeout = 0
    Wed Apr 21 23:31:38 2010 us=328000  inactivity_timeout = 0
    Wed Apr 21 23:31:38 2010 us=328000  ping_send_timeout = 10
    Wed Apr 21 23:31:38 2010 us=328000  ping_rec_timeout = 0
    Wed Apr 21 23:31:38 2010 us=328000  ping_rec_timeout_action = 0
    Wed Apr 21 23:31:38 2010 us=328000  ping_timer_remote = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  remap_sigusr1 = 0
    Wed Apr 21 23:31:38 2010 us=328000  explicit_exit_notification = 0
    Wed Apr 21 23:31:38 2010 us=328000  persist_tun = ENABLED
    Wed Apr 21 23:31:38 2010 us=328000  persist_local_ip = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  persist_remote_ip = DISABLED
    Wed Apr 21 23:31:38 2010 us=328000  persist_key = ENABLED
    Wed Apr 21 23:31:38 2010 us=328000  mssfix = 1450
    Wed Apr 21 23:31:38 2010 us=328000  resolve_retry_seconds = 1000000000
    Wed Apr 21 23:31:38 2010 us=328000  username = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=328000  groupname = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=328000  chroot_dir = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=328000  cd_dir = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=328000  writepid = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=578000  up_script = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=578000  down_script = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=578000  down_pre = DISABLED
    Wed Apr 21 23:31:38 2010 us=578000  up_restart = DISABLED
    Wed Apr 21 23:31:38 2010 us=578000  up_delay = DISABLED
    Wed Apr 21 23:31:38 2010 us=578000  daemon = DISABLED
    Wed Apr 21 23:31:38 2010 us=578000  inetd = 0
    Wed Apr 21 23:31:38 2010 us=578000  log = DISABLED
    Wed Apr 21 23:31:38 2010 us=578000  suppress_timestamps = DISABLED
    Wed Apr 21 23:31:38 2010 us=578000  nice = 0
    Wed Apr 21 23:31:38 2010 us=578000  verbosity = 4
    Wed Apr 21 23:31:38 2010 us=578000  mute = 0
    Wed Apr 21 23:31:38 2010 us=578000  gremlin = 0
    Wed Apr 21 23:31:38 2010 us=578000  status_file = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=578000  status_file_version = 1
    Wed Apr 21 23:31:38 2010 us=578000  status_file_update_freq = 60
    Wed Apr 21 23:31:38 2010 us=578000  occ = ENABLED
    Wed Apr 21 23:31:38 2010 us=578000  rcvbuf = 0
    Wed Apr 21 23:31:38 2010 us=578000  sndbuf = 0
    Wed Apr 21 23:31:38 2010 us=593000  sockflags = 0
    Wed Apr 21 23:31:38 2010 us=593000  fast_io = DISABLED
    Wed Apr 21 23:31:38 2010 us=593000  lzo = 7
    Wed Apr 21 23:31:38 2010 us=593000  route_script = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=593000  route_default_gateway = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=593000  route_default_metric = 0
    Wed Apr 21 23:31:38 2010 us=593000  route_noexec = DISABLED
    Wed Apr 21 23:31:38 2010 us=593000  route_delay = 5
    Wed Apr 21 23:31:38 2010 us=593000  route_delay_window = 30
    Wed Apr 21 23:31:38 2010 us=593000  route_delay_defined = ENABLED
    Wed Apr 21 23:31:38 2010 us=593000  route_nopull = DISABLED
    Wed Apr 21 23:31:38 2010 us=593000  route_gateway_via_dhcp = DISABLED
    Wed Apr 21 23:31:38 2010 us=593000  max_routes = 100
    Wed Apr 21 23:31:38 2010 us=593000  allow_pull_fqdn = DISABLED
    Wed Apr 21 23:31:38 2010 us=593000  management_addr = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=593000  management_port = 0
    Wed Apr 21 23:31:38 2010 us=593000  management_user_pass = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=593000  management_log_history_cache = 250
    Wed Apr 21 23:31:38 2010 us=593000  management_echo_buffer_size = 100
    Wed Apr 21 23:31:38 2010 us=593000  management_write_peer_info_file = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=593000  management_client_user = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=593000  management_client_group = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=593000  management_flags = 0
    Wed Apr 21 23:31:38 2010 us=593000  shared_secret_file = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=593000  key_direction = 0
    Wed Apr 21 23:31:38 2010 us=593000  ciphername_defined = ENABLED
    Wed Apr 21 23:31:38 2010 us=593000  ciphername = 'BF-CBC'
    Wed Apr 21 23:31:38 2010 us=593000  authname_defined = ENABLED
    Wed Apr 21 23:31:38 2010 us=593000  authname = 'SHA1'
    Wed Apr 21 23:31:38 2010 us=593000  prng_hash = 'SHA1'
    Wed Apr 21 23:31:38 2010 us=593000  prng_nonce_secret_len = 16
    Wed Apr 21 23:31:38 2010 us=609000  keysize = 0
    Wed Apr 21 23:31:38 2010 us=609000  engine = DISABLED
    Wed Apr 21 23:31:38 2010 us=609000  replay = ENABLED
    Wed Apr 21 23:31:38 2010 us=609000  mute_replay_warnings = DISABLED
    Wed Apr 21 23:31:38 2010 us=609000  replay_window = 64
    Wed Apr 21 23:31:38 2010 us=609000  replay_time = 15
    Wed Apr 21 23:31:38 2010 us=609000  packet_id_file = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=609000  use_iv = ENABLED
    Wed Apr 21 23:31:38 2010 us=609000  test_crypto = DISABLED
    Wed Apr 21 23:31:38 2010 us=609000  tls_server = DISABLED
    Wed Apr 21 23:31:38 2010 us=609000  tls_client = ENABLED
    Wed Apr 21 23:31:38 2010 us=609000  key_method = 2
    Wed Apr 21 23:31:38 2010 us=609000  ca_file = 'ca.crt'
    Wed Apr 21 23:31:38 2010 us=609000  ca_path = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=609000  dh_file = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=609000  cert_file = 'client1.crt'
    Wed Apr 21 23:31:38 2010 us=609000  priv_key_file = 'client1.key'
    Wed Apr 21 23:31:38 2010 us=609000  pkcs12_file = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=609000  cryptoapi_cert = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=609000  cipher_list = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=609000  tls_verify = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=609000  tls_remote = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=609000  crl_file = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=609000  ns_cert_type = 64
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_ku _= 0
    Wed Apr 21 23:31:38 2010 us=609000  remote_cert_eku = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=609000  tls_timeout = 2
    Wed Apr 21 23:31:38 2010 us=609000  renegotiate_bytes = 0
    Wed Apr 21 23:31:38 2010 us=609000  renegotiate_packets = 0
    Wed Apr 21 23:31:38 2010 us=609000  renegotiate_seconds = 3600
    Wed Apr 21 23:31:38 2010 us=609000  handshake_window = 60
    Wed Apr 21 23:31:38 2010 us=609000  transition_window = 3600
    Wed Apr 21 23:31:38 2010 us=609000  single_session = DISABLED
    Wed Apr 21 23:31:38 2010 us=609000  tls_exit = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  tls_auth_file = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_protected_authentication = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_private_mode = 00000000
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=625000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  pkcs11_cert_private = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  pkcs11_pin_cache_period = -1
    Wed Apr 21 23:31:38 2010 us=640000  pkcs11_id = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=640000  pkcs11_id_management = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  server_network = 0.0.0.0
    Wed Apr 21 23:31:38 2010 us=640000  server_netmask = 0.0.0.0
    Wed Apr 21 23:31:38 2010 us=640000  server_bridge_ip = 0.0.0.0
    Wed Apr 21 23:31:38 2010 us=640000  server_bridge_netmask = 0.0.0.0
    Wed Apr 21 23:31:38 2010 us=640000  server_bridge_pool_start = 0.0.0.0
    Wed Apr 21 23:31:38 2010 us=640000  server_bridge_pool_end = 0.0.0.0
    Wed Apr 21 23:31:38 2010 us=640000  ifconfig_pool_defined = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  ifconfig_pool_start = 0.0.0.0
    Wed Apr 21 23:31:38 2010 us=640000  ifconfig_pool_end = 0.0.0.0
    Wed Apr 21 23:31:38 2010 us=640000  ifconfig_pool_netmask = 0.0.0.0
    Wed Apr 21 23:31:38 2010 us=640000  ifconfig_pool_persist_filename = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=640000  ifconfig_pool_persist_refresh_freq = 600
    Wed Apr 21 23:31:38 2010 us=640000  n_bcast_buf = 256
    Wed Apr 21 23:31:38 2010 us=640000  tcp_queue_limit = 64
    Wed Apr 21 23:31:38 2010 us=640000  real_hash_size = 256
    Wed Apr 21 23:31:38 2010 us=640000  virtual_hash_size = 256
    Wed Apr 21 23:31:38 2010 us=640000  client_connect_script = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=640000  learn_address_script = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=640000  client_disconnect_script = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=640000  client_config_dir = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=640000  ccd_exclusive = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  tmp_dir = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=640000  push_ifconfig_defined = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  push_ifconfig_local = 0.0.0.0
    Wed Apr 21 23:31:38 2010 us=640000  push_ifconfig_remote_netmask = 0.0.0.0
    Wed Apr 21 23:31:38 2010 us=640000  enable_c2c = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  duplicate_cn = DISABLED
    Wed Apr 21 23:31:38 2010 us=640000  cf_max = 0
    Wed Apr 21 23:31:38 2010 us=640000  cf_per = 0
    Wed Apr 21 23:31:38 2010 us=640000  max_clients = 1024
    Wed Apr 21 23:31:38 2010 us=640000  max_routes_per_client = 256
    Wed Apr 21 23:31:38 2010 us=640000  auth_user_pass_verify_script = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=640000  auth_user_pass_verify_script_via_file = DISABLED
    Wed Apr 21 23:31:38 2010 us=656000  ssl_flags = 0
    Wed Apr 21 23:31:38 2010 us=656000  client = ENABLED
    Wed Apr 21 23:31:38 2010 us=656000  pull = ENABLED
    Wed Apr 21 23:31:38 2010 us=656000  auth_user_pass_file = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=656000  show_net_up = DISABLED
    Wed Apr 21 23:31:38 2010 us=656000  route_method = 0
    Wed Apr 21 23:31:38 2010 us=656000  ip_win32_defined = DISABLED
    Wed Apr 21 23:31:38 2010 us=656000  ip_win32_type = 3
    Wed Apr 21 23:31:38 2010 us=656000  dhcp_masq_offset = 0
    Wed Apr 21 23:31:38 2010 us=656000  dhcp_lease_time = 31536000
    Wed Apr 21 23:31:38 2010 us=656000  tap_sleep = 0
    Wed Apr 21 23:31:38 2010 us=656000  dhcp_options = DISABLED
    Wed Apr 21 23:31:38 2010 us=656000  dhcp_renew = DISABLED
    Wed Apr 21 23:31:38 2010 us=656000  dhcp_pre_release = DISABLED
    Wed Apr 21 23:31:38 2010 us=656000  dhcp_release = DISABLED
    Wed Apr 21 23:31:38 2010 us=656000  domain = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=656000  netbios_scope = '[UNDEF]'
    Wed Apr 21 23:31:38 2010 us=656000  netbios_node_type = 0
    Wed Apr 21 23:31:38 2010 us=656000  disable_nbt = DISABLED
    Wed Apr 21 23:31:38 2010 us=656000 OpenVPN 2.1.1 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Dec 11 2009
    Wed Apr 21 23:31:38 2010 us=656000 WARNING: –ping should normally be used with --ping-restart or --ping-exit
    Wed Apr 21 23:31:38 2010 us=656000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
    Wed Apr 21 23:31:38 2010 us=750000 LZO compression initialized
    Wed Apr 21 23:31:38 2010 us=750000 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ]
    Wed Apr 21 23:31:38 2010 us=750000 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
    Wed Apr 21 23:31:38 2010 us=750000 Local Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
    Wed Apr 21 23:31:38 2010 us=750000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
    Wed Apr 21 23:31:38 2010 us=750000 Local Options hash (VER=V4): '69109d17'
    Wed Apr 21 23:31:38 2010 us=750000 Expected Remote Options hash (VER=V4): 'c0103fa8'
    Wed Apr 21 23:31:38 2010 us=750000 Attempting to establish TCP connection with 85.72.53.132:1194
    Wed Apr 21 23:31:59 2010 us=687000 TCP: connect to 85.72.53.132:1194 failed, will try again in 5 seconds: Connection timed out (WSAETIMEDOUT)
    Wed Apr 21 23:32:25 2010 us=531000 TCP: connect to 85.72.53.132:1194 failed, will try again in 5 seconds: Connection timed out (WSAETIMEDOUT)
    Wed Apr 21 23:32:51 2010 us=484000 TCP: connect to 85.72.53.132:1194 failed, will try again in 5 seconds: Connection timed out (WSAETIMEDOUT) "

    But Thank you very very much for your kind respond. I am sure i can make it if i get little more direction from you. thank you and take care. I will wait for your kind respond. ba bye________________



  • @ll_hellBoy_ll:

    Wed Apr 21 23:31:38 2010 us=750000 Attempting to establish TCP connection with 85.72.53.132:1194
    Wed Apr 21 23:31:59 2010 us=687000 TCP: connect to 85.72.53.132:1194 failed, will try again in 5 seconds: Connection timed out (WSAETIMEDOUT)
    Wed Apr 21 23:32:25 2010 us=531000 TCP: connect to 85.72.53.132:1194 failed, will try again in 5 seconds: Connection timed out (WSAETIMEDOUT)
    Wed Apr 21 23:32:51 2010 us=484000 TCP: connect to 85.72.53.132:1194 failed, will try again in 5 seconds: Connection timed out (WSAETIMEDOUT) "

    You do not have any service listening on port 1194/TCP.  Check your OpenVPN server settings.  Is it configured to use TCP (hint, read the OpenVPN documentation on the OpenVPN site - you should be using UDP)?  Have you ensured that port 1194/TCP is forwarded to your pfSense host if that isn't the external host?  Have you created a WAN rule to allow connections to the OpenVPN server on 1194/TCP?

    In short - have you done the basics of making any service accessible?



  • sorry. i just able to connect to my opnvpn server. its running very smoothly. but thank you Mr. "Cry Havok". It was your kind help. and now i am successfully running OpnVpn client. Thank you very much. My problem was "Server.crt". it was wrong . when i fixed it. everything goes well. So now am very happy. by the by sir what address i should type if i try to access it from outside my network? I am not sure how. I will wait for your kind respond. Thank you. Take care and ba bye



  • yes sir. i am running it without any problem. and yes i open both tcp and udp. Yes i follow that tutorial and this tutorial also "http://www.scribd.com/doc/8142908/pfSense-OpenVPN-Tutorial".

    my problem was as i said "server.crt". actually i couldn't get the code correctly. thats why i couldn't put correct code one pfsense openvpn server.crt field.

    And now i know why i couldn't get the correct code. it was typing mistake. Something like this "build-key-server.bat"

    Actually it should be like this "build-key-server.bat server"

    but i am very happy now. thank you very much sir.

    take care and ba bye…..


Log in to reply