Openvpn + certificates not working
Posted: Mon Jan 23, 2012 11:04 am
Hi all,
I need your help...
Recently I decided to create an openvpn server on my 433uah. I started with a simple password authorized ovpn server which worked fine. Because of the improved security and simplicity a followed some of the tutorials and tried to switch the connection to be authorized by the certificates.. In general - I made an authority, created and signed server and client certificates, uploaded and unlocked the certificates to the mikrotik, changed the connection and client preferences and........nothing happend......
I am not able to connect
I tried to recreate the certificates few times to make sure they are ok...
The log on the mikrotik shows simply messages like "dialing, using encoding df-128-cbc/sha1, tcp connection established, disconnected" but not any real error message....
Any idea?
Thanks for any help
I need your help...
Recently I decided to create an openvpn server on my 433uah. I started with a simple password authorized ovpn server which worked fine. Because of the improved security and simplicity a followed some of the tutorials and tried to switch the connection to be authorized by the certificates.. In general - I made an authority, created and signed server and client certificates, uploaded and unlocked the certificates to the mikrotik, changed the connection and client preferences and........nothing happend......
I am not able to connect
Code: Select all
Checking reachability status of connection...
Connection is reachable. Starting connection attempt.
Jan 23 09:50:59: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jan 23 09:50:59: NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Jan 23 09:50:59: LZO compression initialized
Jan 23 09:50:59: Attempting to establish TCP connection with xzy:1194 [nonblock]
Jan 23 09:51:00: TCP connection established with xzy:1194
Jan 23 09:51:00: TCPv4_CLIENT link local: [undef]
Jan 23 09:51:00: TCPv4_CLIENT link remote: xzy:1194
Jan 23 09:51:01: Connection reset, restarting [0]
Jan 23 09:51:01: SIGUSR1[soft,connection-reset] received, process restarting
Jan 23 09:51:01: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jan 23 09:51:01: NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Jan 23 09:51:01: Re-using SSL/TLS context
Jan 23 09:51:01: LZO compression initialized
Jan 23 09:51:01: Attempting to establish TCP connection with xzy:1194 [nonblock]
Jan 23 09:51:02: TCP: connect to xzy:1194 failed, will try again in 5 seconds: Connection refused
Jan 23 09:51:08: TCP connection established with xzy:1194
Jan 23 09:51:08: TCPv4_CLIENT link local: [undef]
Jan 23 09:51:08: TCPv4_CLIENT link remote: xzy:1194
Jan 23 09:51:10: Connection reset, restarting [0]
Jan 23 09:51:10: SIGUSR1[soft,connection-reset] received, process restartingThe log on the mikrotik shows simply messages like "dialing, using encoding df-128-cbc/sha1, tcp connection established, disconnected" but not any real error message....
Any idea?
Thanks for any help