Astaro as a client to OpenVPN Server

I hope Sophos will support the OpenVPN feature within the next releases

Hi,

That's because the "ovpn to apc" script could not find the port number in your ovpn source file. This happens when the port number isn't specified in a dedicated "port" line but next to the host IP. Example :
remote 212.129.33.61 443

I've just corrected the problem by adding the following lines next to line 161, so the "RemPort" variable is taken from the "remote" line :

(161)       RemPort=`grep "^port " ${OvpnFile} | cut -d ' ' -f2 |tr -d '\r\n'`
(162)       if [ -z "${RemPort}" ]; then
(163)           # Looks like port number isn't given in its specific line
(164)           # Trying to catch port number from the "remote" line
(165)           RemPort=`grep "^remote " ${OvpnFile} | cut -d ' ' -f3 |tr -d '\r\n'`
(166)       fi

To avoid "File Corrupt" issue when editing manually your port number within your converted pac file, you have to edit the apc file with a Hex editor, and edit the Hex Byte value preceding your port number. The Hex Byte value must be equal to the length of your port number value.

For example :
if your port number is 443, the length is 3 characters, you'll have :
.. 03 followed by the Hex value of your port number : 34 34 33 (443), followed everytime by 0b 00 00 00 ..

If your port number is 40000, the length is 5 characters, you'll have :
.. 05 followed by 34 30 30 30 30 (40000), followed by 0b 00 00 00 ..

Hope this will help.

Hi, John, and welcome to the UTM Community!

Are you saying that you have successfully used ovpn-to-apc to create a client file that is currently connecting a UTM to a non-UTM OpenVPN server?

Cheers - Bob

Hi,

Actually no, I'm now stuck because my "ta_xxxxxx.key" file generated by the script is empty as my "FreeVPN" provider (freevpn.me) doesn't provide a <tls-auth> section in their .ovpn file :-(

If you have an idea how I should work with .ovpn files provided by freevpn.me, let me know.