• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

[Solved] OpenVPN - Linux (Ubuntu) client export

Scheduled Pinned Locked Moved 2.0-RC Snapshot Feedback and Problems - RETIRED
6 Posts 2 Posters 17.8k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • C
    c0urier
    last edited by Oct 17, 2010, 6:38 PM Sep 13, 2010, 2:21 AM

    Hi guys,

    I don't know if this has already been asked. But I'm having some issues when trying to get some of our Linux clients to use OpenVPN export. I'm doing an export of Viscosity Bundle then I'm importing the clients config.conf and checking all fields are filled out correctly in Ubuntu's NetworkManager. But every time the clients try to connect the only logging I get is a bunch of these:
    openvpn[20284]: TLS Error: incoming packet authentication failed from [AF_INET]xx.xx.xx.xx:39337
    openvpn[20284]: Authenticate/Decrypt packet error: packet HMAC authentication failed

    If I download their clients and try them on a Windows machine it works without any problems. I've triple checked that the right user/pass is setup in Ubuntu's NetworkManager, can someone point me in the right direction?

    On pfsense 1.2.3 there was no issues what so ever, but there you had to manually copy over the config/crt/key files and that worked like a charm and still does.

    pfsense: 2.1.5-RELEASE, AMD64
    Running on: MB/CPU: ASUS P8H77-I / Core i3-2120T | MEM: 8GB DDR3 | HDD: WD Blue 120GB 2.5" SATA | WAN/LAN: Fujitsu D2735-2 – Intel® chip 82576NS | WLAN: Realtek® 8111F PCIe | Connection: 1000/1000Mbit (Bredband2.com)
    [/U

    1 Reply Last reply Reply Quote 0
    • C
      cmb
      last edited by Sep 13, 2010, 2:30 AM

      that means you're missing one of the certificates. Don't use the Viscosity bundle for Linux, get the zip that has the individual files.

      1 Reply Last reply Reply Quote 0
      • C
        c0urier
        last edited by Sep 13, 2010, 2:36 AM

        Hi cmb,

        The zip files gives you;
        *-udp-1194.ovpn
        *-udp-1194.p12
        *-udp-1194-tls.key

        I guess I'll have to do some kind of export from the *.p12 file then or am I wrong? Since I can't figure out how to import that into the NetworkManager in Ubuntu.

        pfsense: 2.1.5-RELEASE, AMD64
        Running on: MB/CPU: ASUS P8H77-I / Core i3-2120T | MEM: 8GB DDR3 | HDD: WD Blue 120GB 2.5" SATA | WAN/LAN: Fujitsu D2735-2 – Intel® chip 82576NS | WLAN: Realtek® 8111F PCIe | Connection: 1000/1000Mbit (Bredband2.com)
        [/U

        1 Reply Last reply Reply Quote 0
        • C
          cmb
          last edited by Sep 13, 2010, 2:45 AM

          You can use that as is from the command line OpenVPN. I don't know how that works in Ubuntu, it should support p12 files, but you may have to expand that into the individual files.

          1 Reply Last reply Reply Quote 0
          • C
            c0urier
            last edited by Sep 13, 2010, 2:58 AM

            Okay I've checked up on it a bit - The graphical network-manager-openvpn for Ubuntu (Gnome in general I guess) does not direct support *.p12 files.

            It's heavily discussed in this thread: https://bugs.launchpad.net/ubuntu/+source/network-manager-openvpn/+bug/91615

            And a guy from the link above has made a patch in this article:
            http://mail.gnome.org/archives/networkmanager-list/2010-January/msg00248.html

            Just if anyone else want's to offer their Linux/Ubuntu clients the ability to installed the certificates themselves.

            Thanks cmb!!

            pfsense: 2.1.5-RELEASE, AMD64
            Running on: MB/CPU: ASUS P8H77-I / Core i3-2120T | MEM: 8GB DDR3 | HDD: WD Blue 120GB 2.5" SATA | WAN/LAN: Fujitsu D2735-2 – Intel® chip 82576NS | WLAN: Realtek® 8111F PCIe | Connection: 1000/1000Mbit (Bredband2.com)
            [/U

            1 Reply Last reply Reply Quote 0
            • C
              c0urier
              last edited by Oct 17, 2010, 6:37 PM

              Just to do a little update on this thread for others.

              This now work for Ubuntu 10.10.

              pfsense: 2.1.5-RELEASE, AMD64
              Running on: MB/CPU: ASUS P8H77-I / Core i3-2120T | MEM: 8GB DDR3 | HDD: WD Blue 120GB 2.5" SATA | WAN/LAN: Fujitsu D2735-2 – Intel® chip 82576NS | WLAN: Realtek® 8111F PCIe | Connection: 1000/1000Mbit (Bredband2.com)
              [/U

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                This community forum collects and processes your personal information.
                consent.not_received