OpenVPN - Dropping out - Fatal error
-
Hey Everyone,
I have OpenVPN working nicely with pfsense as a client, though one issue seems to elude meIt drops out sometimes, which i believe may happen when its inactive
The current configuration is
Pfsense Client OpenVPN => OpenVPN Access Server
LAN Rule : Single Host GW = OpenVPNThis works fine, it does exactly what i want it to
Below is level 4 logging from my syslog server (read bottom up)
/usr/local/sbin/ovpn-linkdown ovpnc1 1500 1542 172.27.232.9 [More Information] 255.255.252.0 [More Information] init
Closing TUN/TAP interface
Exiting due to fatal error
ERROR: could not read Auth username from stdin
TLS: soft reset sec=0 bytes=257104590/0 pkts=272786/0Also once it drops the VPN does not attempt to reconnect (i press the restart service and it comes straight back up)
Just making a change to try and resolve
ERROR: could not read Auth username from stdinRemoving auth-nocache as it shouldnt be used IMO when i am using a text file for user & pass
-
Hi, at first sight, seems that there are two errors:
The first:/usr/local/sbin/ovpn-linkdown ovpnc1 1500 1542 172.27.232.9 [More Information] 255.255.252.0 [More Information] init
Closing TUN/TAP interface
Exiting due to fatal errorAppears to be a problem related to the hardware (patch cord, network card, etc.) Due to something, the link is going down. If you can verify the above components and see if the errors are gone.
The second error:
ERROR: could not read Auth username from stdin
TLS: soft reset sec=0 bytes=257104590/0 pkts=272786/0Question: This error occurs few seconds after the first one? If yes, maybe it's related to the first. If the first error gets corrected and this error continues, try to increase the verbosity of the log file (one way too is to add to the file /var/etc/server1.ovpn the lines: "verb 5" and "log-append /var/etc/log.txt", restart openvpn and see the log file contents. This modification will be lost after reboot) to have more information which command exactly is complaining about the missing Auth username and so we can solve the problem.