OpenVPN - Dropping out - Fatal error



  • Hey Everyone,
    I have OpenVPN working nicely with pfsense as a client, though one issue seems to elude me

    It drops out sometimes, which i believe may happen when its inactive

    The current configuration is

    Pfsense Client OpenVPN => OpenVPN Access Server
    LAN Rule : Single Host GW = OpenVPN

    This works fine, it does exactly what i want it to

    Below is level 4 logging from my syslog server (read bottom up)

    /usr/local/sbin/ovpn-linkdown ovpnc1 1500 1542 172.27.232.9 [More Information] 255.255.252.0 [More Information] init
    Closing TUN/TAP interface
    Exiting due to fatal error
    ERROR: could not read Auth username from stdin
    TLS: soft reset sec=0 bytes=257104590/0 pkts=272786/0

    Also once it drops the VPN does not attempt to reconnect (i press the restart service and it comes straight back up)

    Just making a change to try and resolve
    ERROR: could not read Auth username from stdin

    Removing auth-nocache as it shouldnt be used IMO when i am using a text file for user & pass



  • Hi, at first sight, seems that there are two errors:
    The first:

    /usr/local/sbin/ovpn-linkdown ovpnc1 1500 1542 172.27.232.9 [More Information] 255.255.252.0 [More Information] init   
    Closing TUN/TAP interface 
    Exiting due to fatal error

    Appears to be a problem related to the hardware (patch cord, network card, etc.) Due to something, the link is going down. If you can verify the above components and see if the errors are gone.

    The second error:
    ERROR: could not read Auth username from stdin 
    TLS: soft reset sec=0 bytes=257104590/0 pkts=272786/0

    Question: This error occurs few seconds after the first one? If yes, maybe it's related to the first. If the first error gets corrected and this error continues, try to increase the verbosity of the log file (one way too is to add to the file /var/etc/server1.ovpn the lines: "verb 5" and  "log-append /var/etc/log.txt", restart openvpn and see the log file contents. This modification will be lost after reboot) to have more information which command exactly is complaining about the missing  Auth username and so we can solve the problem.