Open VPN on 5.0rc10

Rockyboa · February 27, 2011, 11:38pm

Hi all,

This is my first try at openVPN, many places stop allowing PPtP and wish to try ovpn. I would like to use a routed setup and Win32 clients. After struggling with this stuff all afternoon, I get some connection reset on my client. My question is, do we still need to create an authfile? If yes, I guess I’ll need to recompile Win32 OpenVPN 2.1.3 with this option.

What else could be wrong: Here is my conf file

client
dev tun
proto tcp
remote aaa.bbb.com 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca easy-rsa/keys/ca.crt
cert easy-rsa/keys/client1.crt
key easy-rsa/keys/client1.key
ns-cert-type server
verb 3status ./my.log

and an export of my ovpn server

set auth=sha1,md5 certificate=server cipher=blowfish128,aes128,aes192,aes256 \
    default-profile=ovpn-profile enabled=yes keepalive-timeout=disabled \
    mac-address=FE:CF:A2:C6:C2:76 max-mtu=1500 mode=ip netmask=24 port=1194 \
    require-client-certificate=no

I always get in connection reset, restarting [0]

MB

Rockyboa · March 2, 2011, 8:05pm

Can someone, that use openVPN, on a windows or linux client,tell me if I really need to recompile the openVPN software --auth-user-pass.

If someone has recompile 2.1.3 or 2.1.4 (if it works with openVPN in the routerOS 5.0rc10) for windows and would like to send it to me, I would really appreciate.

Martin

mrz · March 3, 2011, 7:46am

On Ubuntu (OVPN version 2.1.4) you don’t need to recompile anything

# client.conf
client
dev tun
proto tcp
remote x.x.x.x 1194
resolv-retry infinite
nobind
persist-key
persist-tun

ca /etc/openvpn/ca.crt
cert /etc/openvpn/client1.crt
key /etc/openvpn/client1.key

cipher AES-128-CBC

auth-user-pass pass.txt

pass.txt

username
password