Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Android to Pfsense Openvpn - Certificate / Key / CA ?

    OpenVPN
    1
    2
    1.1k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • W
      willi9999
      last edited by

      Hy,

      I got a openvpn server (linux) set up and working, pfsense is the client. So I already have CA, Cert, Key (named them ca.crt
      vpnkey.crt,vpnkey.key) Pfsense doesnt need vpnkey.key, but android vpn does, both connect).

      If I use that three files for a pfsense openvpn server and if i connect by android it gets me an error that rsa key size is too big.

      So I tried to create a new certificate with the pfsense wizard, and use the webconfigurator ca, the webconfigurator crt and key.

      I get the following:

      
VERIFY ERROR: depth=0, error=self signed certificate: C=US, ST=Somewhere, L=Somecity, O=CompanyName, OU=Organizational Unit Name (eg, section), CN=Common Name (eg, YOUR name), emailAddress=Email Address

TLS_ERROR: BIO read tls_read_plaintext error: error:140890B2:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate returned

TLS Error: TLS object -> incoming plaintext read erro

TLS Error: TLS handshake failed

      What does that mean?
      Thx!

      1 Reply Last reply Reply Quote 0
      • W
        willi9999
        last edited by

        found out, wasnt a server certificate i used, this walkthrough works:

        https://www.highlnk.com/2013/12/configuring-openvpn-on-pfsense/

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.