We have installed "openVPN" from openSUSE 11.2 repo and "openVPN - webmin module" (GUI).What it needs to be done .. "Road Warriors" need to be able to access websites through openSUSE box sitting in the data center, from remote locations (hotel, coffe shops, wi-fi hot spots,..)We're half way there but it gets stucked somewhere with the IP's
View 6 RepliesI am trying to setup an OpenVPN server using CentOS 5. I ahve installed everything, configs are good, server starts fine. I have generated my certificates using the easy-rsa 2.0 included with OpenVPN. I have downloaded all the certificates to my machine and setup my client to connect. I am having that typical problem everyone seems to have where my client says certificate verify failed. However I can use openssl on the server to verify and it is ok. What am I doing wrong here?
Code:
[root@GSFOVPNxxx01 openvpn]# openssl verify -CAfile ca.crt gg-jbloomer.crt
gg-jbloomer.crt: OK
[root@GSFOVPNxxx01 openvpn]#
client output
Code:
2010-12-07 08:44:33 MANAGEMENT: CMD 'hold release'
[Code]...
I just dont get it, I have racked my brain and google until my eyes bleed and can not figure this one out.I am sure it is something simple that I am missing.
I have an opensuse 11.3 install which I want to set up as a network boot server to install Solaris 10 on a Sun Ultra 10 client. According to what I've read, this requires rarpd and tftpd which I've set up on opensuse, but also bootparamd which I can't find for 11.3. It seems it was last included with opensuse 9.2. Does anyone know if it's available, if I could use the suse 9.2 version, or any alternative?
View 3 Replies View RelatedI am trying to setup an OpenVPN server in bridged mode (Ubuntu 10.04 Lts). The goal is for the clients to be able to reach all the servers behind Openvpn server's lan. I have followed the official OpenVPN guide for Ubuntu 10.04.
My network setup is:
Private lan: 10.90.90.0-255 255.255.255.0
Gateway: 10.90.90.1
Openvpn server ip: 10.90.90.8
Gateway public ip: 79.xxxxxxxxx
I have forward port 1195 to the Vpn server through my gateway firewall.Besides that no other firewall is running.I can connect and ping the server both from windows and ubuntu clients. The difference is that from windows I can reach the private lan but not from ubuntu clients.
I'm trying to setup OpenVPN in order to connect back to my home network while traveling for secure browsing and such. However, before I can even start trying to set that up I tried to see if I could open port check my computer through the net. And I'm having a hard time doing that.
As far as I can tell, here are my roadblocks:
1. Is ISP (Qwest) blocking my ports?
2. Is my modem doing the proper port forwarding and firewall?
3. Is my router doing the same?
4. Is my firewall on the computer allowing the request?
To minimize sources of error, I've turned off my local and router firewall and setup my router to forward ports. I'm not to familiar with my modem, but I'm pretty sure that the firewall is turned off by default and I think I've done port-forwarding correctly. But still no success when doing an open port check. At this point I don't know how to diagnose the problem.
I want to set up the following server in open suse:dhcpopenldapnfs (to allow users to mount their home directories from the serverI started off with the openldap server. I configured it with dc=localdomain,dc=local as its domain. As the server machine has no internet. Though when I go to add a .ldif file with the following command
Code:
ldapadd -x -D 'cn=Administrator,dc=localdomain,dc=local' -f /home/base.ldif -W
It returns this
[code]....
i have some problems with configuring openvpn tunnel connection to my openvpn server. I'm using static-key tcp connection. Network manager always said to me that connection could not be established. Also, when i try to run openvpn from terminal, i got some strange permissions problem:
Code:
openvpn --config config.ovpn
Mon Apr 5 15:48:37 2010 OpenVPN 2.1_rc19 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Oct 13 2009
Mon Apr 5 15:48:37 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Apr 5 15:48:37 2010 /usr/sbin/openvpn-vulnkey -q moj.key
[code]....
I need to run a 2nd instance of openvpn on my server so that it can run on udp. The current one runs on tcp and I need to keep that running. Apparently, I need to create a 2nd tun network for it to use - how can I do that? I tried starting a 2nd instance of openvpn but it just seems to hang.
View 1 Replies View RelatedI set up a Samba server on my openSuSE 11.2 machine and I can connect to it locally with the local ip and with my actuall ip. My friend however cannot. I tried to have him ping my ip and that wouldn't even work. I'm confused and wondering why it doesn't work. We share a lot of files and this would make both of our lives much easier.
View 9 Replies View RelatedI am attempting to setup the following:
1.User login/authentication via a single NIS server.
2. User home directory should also be on the Same NIS server.
3. If possible to setup a single shared home directory for all users.
OpenSuse version 11.2 There are twelve workstations from which users will login using the NIS authentication. I have succeeded in setting up NI server. However login fails as the home directory is not accessible.
I'm trying to setup a OpenVpn on my Ubuntu 10.04 and after doing the configs from here: [URL] I get an error:
[Code]....
I have installed bootpd-dd2 and enabled and configured it with xinetd. 1. Made sure that their is a bootptab file and it is configured. 2. Tested the bootpd is working by runing the command /usr/sbin/bootptest cmdbfs .3. tail -f the /var/log/messages and saw the requests from the test.4. rebooted a machine that is configured to pxe boot.there is no messages by bootpd when a request is made.request is picked up by network monitor on a seperate computer on the proper udp port
View 9 Replies View RelatedI use KVpnc and openVPN to connect to my desktop at work from my laptop at home. This works fine, I can reach my desktop at the office from my laptop at home. The only problem is that when the Vpn connection is active I cannot use a browser on my laptop. In fact, I cannot connect to anything outside the office Vpn (like mail, chat etc).
I suspected it had something to do with the DNS servers at the office not being reachable from the Vpn so I added my "regular" DNS servers to the /etc/resolve.conf used when the Vpn is active, I added two lines in total on the form "nameserver <ip-address>". This did not solve the problem. I have searched the KVpn forums without finding anything, and the same goes for the openSUSE forums. Does anybody else experience the same problem?
after I upgraded my SUSE 11.0 to 11.1 many problemes solved themselves. But now there is a new one.
I use openvpn, which always used to work without problems. After upgrading to SUSE 11.1 there is the error message:
"/etc/openvpn/client-suse.sh: line 7: modify_resolvconf: command not found
Wed Jul 7 00:11:38 2010 script failed: could not execute shell command"
The shell script is as follows:
Code:
#!/bin/sh
UPORDOWN=$1
DEV=$2
case $UPORDOWN in
up)
modify_resolvconf modify -s openvpn -p openvpn -t OpenVPN
[Code]....
I can't get my openvpn work if the firewall is on , and I also don't see any option to allow openvpn service in firewall allow service.
View 1 Replies View RelatedI have freshly installed OpenSUSE 11.3 64 bit and reimported my old openvpn connections via Network Manager. Connection can be established fine, but after 3 to 6 seconds (pings) it will stop to receive any packets on the tun device.
I tried disabling the firewall, starting openvpn manually, no avail. I checked the message log and the openvpn output, no messages recorded.
how can i make openvpn to access my entire office lan network through linux firewall.
how can i allow remote client with (private ip)to access my entire ofice network through linux firewall
I have OpenVPN 2.0.8 installed configured to Ethernet Bridge BR0. All windows outside machines can "see" and mount remote inside firewalled machines (i.e. \machine1 or [URL]). However I can't access to inside windows machines with windows Remote Desktop
View 3 Replies View Relatedwe have a weird problem with our opensuse 11.2 server installation.
We want to set up a LDAP Server using the Yast-LDAP Server configuriation tool.
This indeed already worked weeks ago until....this week.
Maybe some updates??!
I do not know what happend exactly. The server just does not want to start again and throws following error:
Starting ldap-serverstartproc: exit status of parent of /usr/lib/openldap/slapd: 1 failed
This happend after a little check of the configuration, but without a change, with Yast. Google delivered only "reinstall your box"-answers.
So.. i did that. And now the "mystical" part: The SAME ERROR occurs with a fresh vanilla system with a brand new and simple configuration (certificats, database, pw...the first Yast config dialog...). I did not change the way i set it up.
I remember, when i did this the first time with 11.2 on that machine, when no problems occured...everything was running out of the box (except the "use commen server certificate" option...).
I'm trying to setup an Apache server on my computer which will allow browsing of files in a specific directory and subdirectories, without needing any sort of authentication.
I've got the Apache2 server up and running through yast, and everything works fine as long as I try to point it to the /www/htdocs folder. However, I want to point it at another folder, which is on another partition. This partition is formatted as NTFS, if that matters at all (here's some background on some permissions issues I had with the NTFS partitions recently).
When I change the "Directory" setting in the Yast http server configuration utility to the directory on the NTFS partition I wish to use, attempting to access the server results in the following error:
Code: Access Forbidden: You don't have permission to access the requested directory. There is either no index document or the directory is read-protected. If you think this is a server error, please contact the webmaster.
Error 403
192.168.1.100
Mon Jun 13 23:43:29 2011
Apache/2.2.17 (Linux/SUSE)
I want to configure a VPN over the Internet.I installed the 'openvpn' package, generated the key file, transfered it by a secure way to the client, and setted up the configuration file.
So, in that configuration file I input the IP addresses of the tunneled interfaces. Both IPs are static in the tunnel.
Then, I've heard somewhere that I can assign a dynamic configuration IP for the client. I do this registering a range.
Well, when I tried to change static IP to dynamic IP (changing '192.168.0.2' to '192.168.0.0/24') in the configuration file, the OpenVPN didn't work.
Obviously I don't know what I'm doing, and I really, don't believe that simply changing the IP will make it work, but I tried.
I hope I explained my problem as well.
My configuration file:
# OpenVPN Server Configuration File
dev tun 0
ifconfig 192.168.0.1 192.168.0.2
cd /etc/openvpn
secret key_file
In client I execute the 'openvpn' without the '--daemon' parameter.Then I want that my client uses a IP in a range (192.168.0.0/24, for example), instead of a static IP (192.168.0.2).I also thought to use a DHCP server, but I'm not sure that will work.
I did some reading on Openvpn and am following some instructions I found @ Install & Configure OpenVPN SSL VPN in SUSE & openSUSE Linux | SUSE & openSUSE
I keep getting the same error message when I run the . ./vars command
"NOTE: If you run ./clean-all, I will be doing a rm -rf on /etc/openvpn/easy-rsa/2.0/keys"
But when I run ../vars I get
"Bash: ../vars: Permission denied"
I have a remote network that I manage consisting of a DLink DFL-210 firewall/router, and behind that a Dell server running openSUSE 11.2 and a collection of Windows XP/Vista/7 computers.
The Linux box is running OpenVPN as a server (that is how I connect to this network) and a client (it connects to a second server - running XP - at a different location).
The DLink router is the DHCP server and provides addresses on the 192.168.51.0/24 network. The OpenVPN server provides the 10.8.51.0/24 address range.
The remote network that the Linux box connects to is 192.168.54.0/24 via the OpenVPN network 10.8.54.0/24.
I have added routes to the DLink router to route all traffic to the 10.8.51.0/24 and 192.168.54.0/24 networks to the Linux box.
With SUSEFirewall turned off, after I have connected via OpenVPN from my remote computer I can ping all active 192.168.51.0/24 addresses. Other computers on the 192.168.51.0/24 network can ping computers on the 192.168.54.0/24 network. But if I turn on SUSEFirewall, neither of these work. However, I can ping 10.8.54.1 from any computer on the 192.168.51.0/24 network.
How can I set up SUSEFirewall to allow these networks to communicate with eachother?
Im trying to setup multiple domU through the default bridge setup. I am able to access only one of them through the network at a time. If you ping one of the domU it works perfectly but you cannot ping any of the others until you stop pinging the one and even then it takes a bit before you can. Ive looked around for a while and seen similar problems but nothing ever seems quite the same. Im probably missing something really stupid. Or is this the way the bridge is supposed to behave? Do i need to use a routed virtual network?
[Code]....
I am trying for the last many days to setup my opensuse 10.3 as Samba PDC Server according to the URL mentioned below, but in vain:How to setup SUSE 10.3 as Samba PDC - openSUSE When ever I try to join a Windows XP machine to the domain setup on Opensuse, I get the error:'The following error occured while attempting to join the domain. The network path was not found'. What could be the reason for this error despite of the fact the I am able to ping the FQDN of the PDC from the XP machine, but the XP machine simply denies to join the domain because of the above mentioned error.
View 7 Replies View RelatedCan anyone recommend a good tutorial in how to use/setup a VPN using openVPN? I've registered with strongvpn.com but am a complete newb to setting up VPN on Ubuntu.
View 1 Replies View Relatedwhile trying to set up Xen Virtual Nodes we encountered one issue with the network (which is why it is posted here On the DomU the interface is provided by a bonding -bond0- of three NICS. Now the Xen network script a) does not take this bonding b) destroyes even this bonding From a number of posts I assume I have to configure this by hand, correct? Is there an instruction how to do this? Simply create a bridge on top of bond0??
View 1 Replies View RelatedI'm trying to setup OpenVPN to use a third party CA, and its unclear to me how to use the serial and index.txt files that are created when one uses the easy-rsa scripts to setup OpenVPN. If i'm using my own CA can I ignore those? Its also unclear to me how OpenVPN figures out the server.key passphrase. I'd also like to leverage the --tls-verify cmd directive but I am unsure of where to specify it.
What I would like to do is have --tls-verify call a perl script that then verifies that the CN of the certificate the client is passing in matches a cn in an LDAP group. I figure I can do the LDAP group lookup with some easy perl stuff, its unclear to me though if --tls-verify is going to pass in the RDN of the client cert.
I need to know the procedure to setup VPN between two network. i setup openvpn access server to do this easy. 1. Step by step procedure to setup VPN 2. Setup VPN with DHCP 3. How to check that open vpn is running successfully.
View 1 Replies View RelatedI'd like to have a set up where my Ethernet card has a static IP set up but my WiFi card doesn't.Currently I have a profile for this set up in Network Manager, however on boot up and every time I replug the cable Network Manager chooses the default "auto eth1" profile. I manually have tochoose my own profile for the Ethernet card every time. How can I make it default??I know the workaround would be to use ifup but then I lose the ability to quickly change access points for my WiFi card so that's not a solution for me
View 9 Replies View Related