This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN Site-to-site UTM9 and openvpn

Do not get tunnel. OpenVpn does not start and an error. I am a single file certificates * .apс made 3 certificate file. Maybe someone has experience in connection UTM 9 and openvpn (Centos 6.6) config files or examples.

Thu Apr 23 06:54:52 2015 us=804842 Current Parameter Settings:
Thu Apr 23 06:54:52 2015 us=804978   config = 'client.conf'
Thu Apr 23 06:54:52 2015 us=805000   mode = 0
Thu Apr 23 06:54:52 2015 us=805019   persist_config = DISABLED
Thu Apr 23 06:54:52 2015 us=805037   persist_mode = 1
Thu Apr 23 06:54:52 2015 us=805054   show_ciphers = DISABLED
Thu Apr 23 06:54:52 2015 us=805071   show_digests = DISABLED
Thu Apr 23 06:54:52 2015 us=805089   show_engines = DISABLED
Thu Apr 23 06:54:52 2015 us=805106   genkey = DISABLED
Thu Apr 23 06:54:52 2015 us=805123   key_pass_file = '[UNDEF]' -
Thu Apr 23 06:54:52 2015 us=805140   show_tls_ciphers = DISABLED
Thu Apr 23 06:54:52 2015 us=805158 Connection profiles [default]:
Thu Apr 23 06:54:52 2015 us=805176   proto = tcp-client
Thu Apr 23 06:54:52 2015 us=805193   local = '[UNDEF]'
Thu Apr 23 06:54:52 2015 us=805211   local_port = 0
Thu Apr 23 06:54:52 2015 us=805228   remote = '195.208.186.117'
Thu Apr 23 06:54:52 2015 us=805246   remote_port = 443
Thu Apr 23 06:54:52 2015 us=805263   remote_float = DISABLED
Thu Apr 23 06:54:52 2015 us=805281   bind_defined = DISABLED
Thu Apr 23 06:54:52 2015 us=805298   bind_local = DISABLED
Thu Apr 23 06:54:52 2015 us=805316 NOTE: --mute triggered...
Thu Apr 23 06:54:52 2015 us=805347 255 variation(s) on previous 20 message(s) suppressed by --mute
Thu Apr 23 06:54:52 2015 us=805368 OpenVPN 2.3.6 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Dec  2 2014
Thu Apr 23 06:54:52 2015 us=805391 library versions: OpenSSL 1.0.1e-fips 11 Feb 2013, LZO 2.03
Thu Apr 23 06:55:06 2015 us=925890 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Thu Apr 23 06:55:06 2015 us=927299 Error: private key password verification failed
Thu Apr 23 06:55:06 2015 us=927378 Exiting due to fatal error

client.conf

client
dev tun
proto tcp
remote 195.208.186.117 443
resolv-retry infinite
nobind

user nobody
group nobody

persist-key
persist-tun

ca /etc/openvpn/keys/ca.crt
cert /etc/openvpn/keys/client.crt
key /etc/openvpn/keys/client.key

cipher AES-128-CBC
auth SHA1

comp-lzo
verb 4
mute 20

status /var/log/openvpn/status_client.log
log-append /var/log/openvpn/openvpn_client.log

This thread was automatically locked due to age.

0 ben83 over 10 years ago

posted an example config here:
https://community.sophos.com/products/unified-threat-management/astaroorg/f/58/t/54618
Cancel
Vote Up 0 Vote Down

Cancel