Synology-Forum.nl
Packages => Officiële Packages => VPN Server => Topic gestart door: Tim__ op 09 juni 2015, 10:30:33
-
Hoi hoi,
Ik heb iemand zijn Synology gemigreerd van een 213+ naar een 415+. De migratie is goed verlopen na het volgen van het stappenplan op de website van Synology. Nadien heb ik geüpgrade van DSM 5.1 naar DSM 5.2. Nadien bleek goed te werken tot we de VPN server testten... bij L2TP VPN krijgen we de melding dat de VPN Server niet bereikbaar is (geen andere poorten genomen en de forward naar het fix ip staat nog steeds actief).
Ook bij OpenVPN krijgen we geen verbinding. Ik voeg de log van OpenVPN toe.
Jun 09 10:17:54: Nakijken of verbinding beschikbaar is...
Jun 09 10:17:54: De verbinding is beschikbaar. Er wordt gepoogd de verbinding op te zetten.
Jun 09 10:17:54: OpenVPN 2.3.6 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on Apr 5 2015
Jun 09 10:17:54: library versions: OpenSSL 1.0.2a 19 Mar 2015, LZO 2.09
Jun 09 10:17:57: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jun 09 10:17:57: UDPv4 link local (bound): [undef]
Jun 09 10:17:57: UDPv4 link remote: [AF_INET]xx.xx.xx..206:1194
Jun 09 10:18:57: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jun 09 10:18:57: TLS Error: TLS handshake failed
Jun 09 10:18:57: SIGUSR1[soft,tls-error] received, process restarting
Jun 09 10:19:08: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jun 09 10:19:08: UDPv4 link local (bound): [undef]
Jun 09 10:19:08: UDPv4 link remote: [AF_INET]xx.xx.xx.206:1194
Jun 09 10:20:08: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jun 09 10:20:08: TLS Error: TLS handshake failed
Jun 09 10:20:08: SIGUSR1[soft,tls-error] received, process restarting
Jun 09 10:20:18: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jun 09 10:20:18: UDPv4 link local (bound): [undef]
Jun 09 10:20:18: UDPv4 link remote: [AF_INET]xx.xx.xx.206:1194
Wie zet mij op weg aub?
-
TLS Error
Als er verder niets anders is dan voorheen en IP`s en poorten juist zijn moet het bijna wel in de Firewall/port forwarding zitten, d.w.z. bij een standaard installatie van VPN.
-
En exporteer het certificaat van de server opnieuw.
-
Bedankt voor je hulp, tips!
- Ik heb hetzelfde interne ip-adres als voorheen, dus de 415+ heeft hetzelfde interne ip-adres als de 213+.
- De ddns werk ook al.
- Er zijn geen poorten extra open of dicht gezet.
- Oude certificaten werden reeds geïmporteerd => geen succes.
- De firewall van de Synology werd reeds uitgeschakeld => geen succes.
- De DS415+ werd reeds in DMZ gezet => geen succes.
-
En exporteer het certificaat van de server opnieuw.
Ook reeds gedaan en geïmporteerd in Viscosity op de Mac => geen succes.
-
Zie mijn tweede reactie.
Dus niet oude importeren maar nieuwe exporteren en dan importeren bij client.
-
Yup, ook een nieuwe export met aanpassing van het ip naar een ddns heb ik gedaan.
-
:) We zijn te snel...
Heb je een log van de server?
-
Waar kan ik die halen?
-
Navigeer naar /usr/syno/etc/packages/VPNCenter/openvpn
Stop eerst de VPN Server want dan krijg je niet een te groot log.
Open openvpn.conf
Wijzig verb 3 naar verb 4
Haal # weg voor log-append /var/log/openvpn.log
Log vindt je dan in /var/log
VPN Server weer starten en probeer te verbinden.
-
Hierbij de out-put van /var/log/openvpn.log
Tue Jun 9 12:10:37 2015 us=372788 client = DISABLED
Tue Jun 9 12:10:37 2015 us=372813 pull = DISABLED
Tue Jun 9 12:10:37 2015 us=372837 auth_user_pass_file = '[UNDEF]'f
Tue Jun 9 12:10:37 2015 us=372863 OpenVPN 2.3.6 i686-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Apr 29 2015
Tue Jun 9 12:10:37 2015 us=372900 library versions: OpenSSL 1.0.1m-fips 19 Mar 2015, LZO 2.08
Tue Jun 9 12:10:37 2015 us=373070 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1195
Tue Jun 9 12:10:37 2015 RADIUS-PLUGIN: Configfile name: /var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf.
Tue Jun 9 12:10:37 2015 us=374192 PLUGIN_INIT: POST /var/packages/VPNCenter/target/lib/radiusplugin.so '[/var/packages/VPNCenter/target/lib/radiusplugin.so] [/var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf]' intercepted=PLUGIN_AUTH_USER_PASS_VERIFY|PLUGIN_CLIENT_CONNECT|PLUGIN_CLIENT_DISCONNECT
Tue Jun 9 12:10:37 2015 us=385948 Diffie-Hellman initialized with 1024 bit key
Tue Jun 9 12:10:37 2015 us=385998 WARNING: POTENTIALLY DANGEROUS OPTION --client-cert-not-required may accept clients which do not present a certificate
Tue Jun 9 12:10:37 2015 us=386815 TLS-Auth MTU parms [ L:1542 D:138 EF:3 EB:0 ET: EL: ]
Tue Jun 9 12:10:37 2015 us=386874 Socket Buffers: R=[212992->131072] S=[212992->131072]
Tue Jun 9 12:10:37 2015 us=387129 ROUTE_GATEWAY 192.168.1.1/255.255.255.0 IFACE=eth0 HWADDR=00:11:32:xx:xx:xx
Tue Jun 9 12:10:37 2015 us=388306 ERROR: Cannot open TUN/TAP dev /dev/net/tun: No such device (errno=19)
Tue Jun 9 12:10:37 2015 us=388356 Exiting due to fatal error
Tue Jun 9 12:12:37 2015 us=216403 Current Parameter Settings:
Tue Jun 9 12:12:37 2015 us=216538 config = 'openvpn.conf'
Tue Jun 9 12:12:37 2015 us=216565 mode = 1
Tue Jun 9 12:12:37 2015 us=216592 persist_config = DISABLED
Tue Jun 9 12:12:37 2015 us=216638 persist_mode = 1
Tue Jun 9 12:12:37 2015 us=216663 show_ciphers = DISABLED
Tue Jun 9 12:12:37 2015 us=216688 show_digests = DISABLED
Tue Jun 9 12:12:37 2015 us=216712 show_engines = DISABLED
Tue Jun 9 12:12:37 2015 us=216753 genkey = DISABLED
Tue Jun 9 12:12:37 2015 us=216778 key_pass_file = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=216803 show_tls_ciphers = DISABLED
Tue Jun 9 12:12:37 2015 us=216830 Connection profiles [default]:
Tue Jun 9 12:12:37 2015 us=216855 proto = udp6
Tue Jun 9 12:12:37 2015 us=216880 local = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=216904 local_port = 1194
Tue Jun 9 12:12:37 2015 us=216929 remote = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=216953 remote_port = 1194
Tue Jun 9 12:12:37 2015 us=216977 remote_float = DISABLED
Tue Jun 9 12:12:37 2015 us=217002 bind_defined = DISABLED
Tue Jun 9 12:12:37 2015 us=217026 bind_local = ENABLED
Tue Jun 9 12:12:37 2015 us=217051 connect_retry_seconds = 5
Tue Jun 9 12:12:37 2015 us=217075 connect_timeout = 10
Tue Jun 9 12:12:37 2015 us=217099 connect_retry_max = 0
Tue Jun 9 12:12:37 2015 us=217124 socks_proxy_server = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=217149 socks_proxy_port = 0
Tue Jun 9 12:12:37 2015 us=217173 socks_proxy_retry = DISABLED
Tue Jun 9 12:12:37 2015 us=217198 tun_mtu = 1500
Tue Jun 9 12:12:37 2015 us=217222 tun_mtu_defined = ENABLED
Tue Jun 9 12:12:37 2015 us=217247 link_mtu = 1500
Tue Jun 9 12:12:37 2015 us=217271 link_mtu_defined = DISABLED
Tue Jun 9 12:12:37 2015 us=217296 tun_mtu_extra = 0
Tue Jun 9 12:12:37 2015 us=217320 tun_mtu_extra_defined = DISABLED
Tue Jun 9 12:12:37 2015 us=217345 mtu_discover_type = -1
Tue Jun 9 12:12:37 2015 us=217369 fragment = 0
Tue Jun 9 12:12:37 2015 us=217394 mssfix = 1450
Tue Jun 9 12:12:37 2015 us=217419 explicit_exit_notification = 0
Tue Jun 9 12:12:37 2015 us=217445 Connection profiles END
Tue Jun 9 12:12:37 2015 us=217470 remote_random = DISABLED
Tue Jun 9 12:12:37 2015 us=217494 ipchange = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=217518 dev = 'tun'
Tue Jun 9 12:12:37 2015 us=217545 dev_type = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=217571 dev_node = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=217606 lladdr = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=217633 topology = 1
Tue Jun 9 12:12:37 2015 us=217658 tun_ipv6 = DISABLED
Tue Jun 9 12:12:37 2015 us=217682 ifconfig_local = '10.5.0.1'
Tue Jun 9 12:12:37 2015 us=217707 ifconfig_remote_netmask = '10.5.0.2'
Tue Jun 9 12:12:37 2015 us=217731 ifconfig_noexec = DISABLED
Tue Jun 9 12:12:37 2015 us=217756 ifconfig_nowarn = DISABLED
Tue Jun 9 12:12:37 2015 us=217780 ifconfig_ipv6_local = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=217805 ifconfig_ipv6_netbits = 0
Tue Jun 9 12:12:37 2015 us=217829 ifconfig_ipv6_remote = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=217854 shaper = 0
Tue Jun 9 12:12:37 2015 us=217878 mtu_test = 0
Tue Jun 9 12:12:37 2015 us=217902 mlock = DISABLED
Tue Jun 9 12:12:37 2015 us=217927 keepalive_ping = 10
Tue Jun 9 12:12:37 2015 us=217953 keepalive_timeout = 60
Tue Jun 9 12:12:37 2015 us=217978 inactivity_timeout = 0
Tue Jun 9 12:12:37 2015 us=218003 ping_send_timeout = 10
Tue Jun 9 12:12:37 2015 us=218027 ping_rec_timeout = 120
Tue Jun 9 12:12:37 2015 us=218052 ping_rec_timeout_action = 2
Tue Jun 9 12:12:37 2015 us=218077 ping_timer_remote = DISABLED
Tue Jun 9 12:12:37 2015 us=218101 remap_sigusr1 = 0
Tue Jun 9 12:12:37 2015 us=218126 persist_tun = ENABLED
Tue Jun 9 12:12:37 2015 us=218150 persist_local_ip = DISABLED
Tue Jun 9 12:12:37 2015 us=218175 persist_remote_ip = DISABLED
Tue Jun 9 12:12:37 2015 us=218199 persist_key = ENABLED
Tue Jun 9 12:12:37 2015 us=218223 passtos = DISABLED
Tue Jun 9 12:12:37 2015 us=218248 resolve_retry_seconds = 1000000000
Tue Jun 9 12:12:37 2015 us=218272 username = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=218296 groupname = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=218321 chroot_dir = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=218346 cd_dir = '/usr/syno/etc/packages/VPNCenter/openvpn'
Tue Jun 9 12:12:37 2015 us=218370 writepid = '/var/run/ovpn_server.pid'
Tue Jun 9 12:12:37 2015 us=218394 up_script = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=218418 down_script = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=218451 down_pre = DISABLED
Tue Jun 9 12:12:37 2015 us=218476 up_restart = DISABLED
Tue Jun 9 12:12:37 2015 us=218500 up_delay = DISABLED
Tue Jun 9 12:12:37 2015 us=218525 daemon = ENABLED
Tue Jun 9 12:12:37 2015 us=218549 inetd = 0
Tue Jun 9 12:12:37 2015 us=218573 log = ENABLED
Tue Jun 9 12:12:37 2015 us=218603 suppress_timestamps = DISABLED
Tue Jun 9 12:12:37 2015 us=218630 nice = 0
Tue Jun 9 12:12:37 2015 us=218655 verbosity = 4
Tue Jun 9 12:12:37 2015 us=218679 mute = 0
Tue Jun 9 12:12:37 2015 us=218704 gremlin = 0
Tue Jun 9 12:12:37 2015 us=218729 status_file = '/tmp/ovpn_status_2_result'
Tue Jun 9 12:12:37 2015 us=218754 status_file_version = 2
Tue Jun 9 12:12:37 2015 us=218778 status_file_update_freq = 30
Tue Jun 9 12:12:37 2015 us=218802 occ = ENABLED
Tue Jun 9 12:12:37 2015 us=218827 rcvbuf = 65536
Tue Jun 9 12:12:37 2015 us=218851 sndbuf = 65536
Tue Jun 9 12:12:37 2015 us=218876 mark = 0
Tue Jun 9 12:12:37 2015 us=218900 sockflags = 0
Tue Jun 9 12:12:37 2015 us=218924 fast_io = DISABLED
Tue Jun 9 12:12:37 2015 us=218948 lzo = 7
Tue Jun 9 12:12:37 2015 us=218973 route_script = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=218997 route_default_gateway = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=219022 route_default_metric = 0
Tue Jun 9 12:12:37 2015 us=219047 route_noexec = DISABLED
Tue Jun 9 12:12:37 2015 us=219071 route_delay = 0
Tue Jun 9 12:12:37 2015 us=219096 route_delay_window = 30
Tue Jun 9 12:12:37 2015 us=219121 route_delay_defined = DISABLED
Tue Jun 9 12:12:37 2015 us=219146 route_nopull = DISABLED
Tue Jun 9 12:12:37 2015 us=219170 route_gateway_via_dhcp = DISABLED
Tue Jun 9 12:12:37 2015 us=219195 max_routes = 100
Tue Jun 9 12:12:37 2015 us=219220 allow_pull_fqdn = DISABLED
Tue Jun 9 12:12:37 2015 us=219245 route 10.5.0.0/255.255.255.0/nil/nil
Tue Jun 9 12:12:37 2015 us=219270 management_addr = '127.0.0.1'
Tue Jun 9 12:12:37 2015 us=219295 management_port = 1195
Tue Jun 9 12:12:37 2015 us=219320 management_user_pass = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=219345 management_log_history_cache = 250
Tue Jun 9 12:12:37 2015 us=219369 management_echo_buffer_size = 100
Tue Jun 9 12:12:37 2015 us=219394 management_write_peer_info_file = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=219419 management_client_user = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=219443 management_client_group = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=219468 management_flags = 0
Tue Jun 9 12:12:37 2015 us=219497 plugin[0] /var/packages/VPNCenter/target/lib/radiusplugin.so '[/var/packages/VPNCenter/target/lib/radiusplugin.so] [/var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf]'
Tue Jun 9 12:12:37 2015 us=219522 shared_secret_file = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=219547 key_direction = 0
Tue Jun 9 12:12:37 2015 us=219572 ciphername_defined = ENABLED
Tue Jun 9 12:12:37 2015 us=219602 ciphername = 'BF-CBC'
Tue Jun 9 12:12:37 2015 us=219628 authname_defined = ENABLED
Tue Jun 9 12:12:37 2015 us=219653 authname = 'SHA1'
Tue Jun 9 12:12:37 2015 us=219678 prng_hash = 'SHA1'
Tue Jun 9 12:12:37 2015 us=219703 prng_nonce_secret_len = 16
Tue Jun 9 12:12:37 2015 us=219727 keysize = 0
Tue Jun 9 12:12:37 2015 us=219752 engine = DISABLED
Tue Jun 9 12:12:37 2015 us=219776 replay = ENABLED
Tue Jun 9 12:12:37 2015 us=219801 mute_replay_warnings = DISABLED
Tue Jun 9 12:12:37 2015 us=219826 replay_window = 64
Tue Jun 9 12:12:37 2015 us=219850 replay_time = 15
Tue Jun 9 12:12:37 2015 us=219875 packet_id_file = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=219900 use_iv = ENABLED
Tue Jun 9 12:12:37 2015 us=219924 test_crypto = DISABLED
Tue Jun 9 12:12:37 2015 us=219949 tls_server = ENABLED
Tue Jun 9 12:12:37 2015 us=219973 tls_client = DISABLED
Tue Jun 9 12:12:37 2015 us=219998 key_method = 2
Tue Jun 9 12:12:37 2015 us=220023 ca_file = '/var/packages/VPNCenter/target/etc/openvpn/keys/ca.crt'
Tue Jun 9 12:12:37 2015 us=220047 ca_path = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=220081 dh_file = '/var/packages/VPNCenter/target/etc/openvpn/keys/dh1024.pem'
Tue Jun 9 12:12:37 2015 us=220106 cert_file = '/var/packages/VPNCenter/target/etc/openvpn/keys/server.crt'
Tue Jun 9 12:12:37 2015 us=220131 priv_key_file = '/var/packages/VPNCenter/target/etc/openvpn/keys/server.key'
Tue Jun 9 12:12:37 2015 us=220156 pkcs12_file = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=220180 cipher_list = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=220205 tls_verify = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=220229 tls_export_cert = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=220254 verify_x509_type = 0
Tue Jun 9 12:12:37 2015 us=220278 verify_x509_name = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=220303 crl_file = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=220327 ns_cert_type = 0
Tue Jun 9 12:12:37 2015 us=220352 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220377 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220401 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220426 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220451 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220475 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220500 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220524 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220549 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220573 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220609 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220637 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220661 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220686 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220711 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220735 remote_cert_ku[i] = 0
Tue Jun 9 12:12:37 2015 us=220760 remote_cert_eku = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=220784 ssl_flags = 3
Tue Jun 9 12:12:37 2015 us=220809 tls_timeout = 2
Tue Jun 9 12:12:37 2015 us=220834 renegotiate_bytes = 0
Tue Jun 9 12:12:37 2015 us=220858 renegotiate_packets = 0
Tue Jun 9 12:12:37 2015 us=220883 renegotiate_seconds = 0
Tue Jun 9 12:12:37 2015 us=220907 handshake_window = 60
Tue Jun 9 12:12:37 2015 us=220932 transition_window = 3600
Tue Jun 9 12:12:37 2015 us=220956 single_session = DISABLED
Tue Jun 9 12:12:37 2015 us=220981 push_peer_info = DISABLED
Tue Jun 9 12:12:37 2015 us=221005 tls_exit = DISABLED
Tue Jun 9 12:12:37 2015 us=221029 tls_auth_file = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=221056 server_network = 10.5.0.0
Tue Jun 9 12:12:37 2015 us=221083 server_netmask = 255.255.255.0
Tue Jun 9 12:12:37 2015 us=221114 server_network_ipv6 = ::
Tue Jun 9 12:12:37 2015 us=221140 server_netbits_ipv6 = 0
Tue Jun 9 12:12:37 2015 us=221167 server_bridge_ip = 0.0.0.0
Tue Jun 9 12:12:37 2015 us=221194 server_bridge_netmask = 0.0.0.0
Tue Jun 9 12:12:37 2015 us=221221 server_bridge_pool_start = 0.0.0.0
Tue Jun 9 12:12:37 2015 us=221247 server_bridge_pool_end = 0.0.0.0
Tue Jun 9 12:12:37 2015 us=221272 push_entry = 'route 10.5.0.0 255.255.255.0'
Tue Jun 9 12:12:37 2015 us=221297 push_entry = 'route 10.5.0.1'
Tue Jun 9 12:12:37 2015 us=221322 push_entry = 'topology net30'
Tue Jun 9 12:12:37 2015 us=221347 push_entry = 'ping 10'
Tue Jun 9 12:12:37 2015 us=221371 push_entry = 'ping-restart 60'
Tue Jun 9 12:12:37 2015 us=221396 ifconfig_pool_defined = ENABLED
Tue Jun 9 12:12:37 2015 us=221422 ifconfig_pool_start = 10.5.0.4
Tue Jun 9 12:12:37 2015 us=221449 ifconfig_pool_end = 10.5.0.251
Tue Jun 9 12:12:37 2015 us=221479 ifconfig_pool_netmask = 0.0.0.0
Tue Jun 9 12:12:37 2015 us=221505 ifconfig_pool_persist_filename = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=221530 ifconfig_pool_persist_refresh_freq = 600
Tue Jun 9 12:12:37 2015 us=221555 ifconfig_ipv6_pool_defined = DISABLED
Tue Jun 9 12:12:37 2015 us=221581 ifconfig_ipv6_pool_base = ::
Tue Jun 9 12:12:37 2015 us=221614 ifconfig_ipv6_pool_netbits = 0
Tue Jun 9 12:12:37 2015 us=221639 n_bcast_buf = 256
Tue Jun 9 12:12:37 2015 us=221664 tcp_queue_limit = 64
Tue Jun 9 12:12:37 2015 us=221697 real_hash_size = 256
Tue Jun 9 12:12:37 2015 us=221722 virtual_hash_size = 256
Tue Jun 9 12:12:37 2015 us=221746 client_connect_script = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=221771 learn_address_script = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=221796 client_disconnect_script = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=221820 client_config_dir = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=221845 ccd_exclusive = DISABLED
Tue Jun 9 12:12:37 2015 us=221869 tmp_dir = '/tmp'
Tue Jun 9 12:12:37 2015 us=221894 push_ifconfig_defined = DISABLED
Tue Jun 9 12:12:37 2015 us=221920 push_ifconfig_local = 0.0.0.0
Tue Jun 9 12:12:37 2015 us=221947 push_ifconfig_remote_netmask = 0.0.0.0
Tue Jun 9 12:12:37 2015 us=221972 push_ifconfig_ipv6_defined = DISABLED
Tue Jun 9 12:12:37 2015 us=221998 push_ifconfig_ipv6_local = ::/0
Tue Jun 9 12:12:37 2015 us=222024 push_ifconfig_ipv6_remote = ::
Tue Jun 9 12:12:37 2015 us=222049 enable_c2c = DISABLED
Tue Jun 9 12:12:37 2015 us=222073 duplicate_cn = ENABLED
Tue Jun 9 12:12:37 2015 us=222098 cf_max = 0
Tue Jun 9 12:12:37 2015 us=222123 cf_per = 0
Tue Jun 9 12:12:37 2015 us=222148 max_clients = 20
Tue Jun 9 12:12:37 2015 us=222172 max_routes_per_client = 256
Tue Jun 9 12:12:37 2015 us=222197 auth_user_pass_verify_script = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=222222 auth_user_pass_verify_script_via_file = DISABLED
Tue Jun 9 12:12:37 2015 us=222246 port_share_host = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=222271 port_share_port = 0
Tue Jun 9 12:12:37 2015 us=222296 client = DISABLED
Tue Jun 9 12:12:37 2015 us=222320 pull = DISABLED
Tue Jun 9 12:12:37 2015 us=222345 auth_user_pass_file = '[UNDEF]'
Tue Jun 9 12:12:37 2015 us=222371 OpenVPN 2.3.6 i686-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Apr 29 2015
Tue Jun 9 12:12:37 2015 us=222407 library versions: OpenSSL 1.0.1m-fips 19 Mar 2015, LZO 2.08
Tue Jun 9 12:12:37 2015 us=222580 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1195
Tue Jun 9 12:12:37 2015 RADIUS-PLUGIN: Configfile name: /var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf.
Tue Jun 9 12:12:37 2015 us=223720 PLUGIN_INIT: POST /var/packages/VPNCenter/target/lib/radiusplugin.so '[/var/packages/VPNCenter/target/lib/radiusplugin.so] [/var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf]' intercepted=PLUGIN_AUTH_USER_PASS_VERIFY|PLUGIN_CLIENT_CONNECT|PLUGIN_CLIENT_DISCONNECT
Tue Jun 9 12:12:37 2015 us=235430 Diffie-Hellman initialized with 1024 bit key
Tue Jun 9 12:12:37 2015 us=235474 WARNING: POTENTIALLY DANGEROUS OPTION --client-cert-not-required may accept clients which do not present a certificate
Tue Jun 9 12:12:37 2015 us=236207 TLS-Auth MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Tue Jun 9 12:12:37 2015 us=236265 Socket Buffers: R=[212992->131072] S=[212992->131072]
Tue Jun 9 12:12:37 2015 us=236526 ROUTE_GATEWAY 192.1.168.1/255.255.255.0 IFACE=eth0 HWADDR=00:11:32:41:5e:f9
Tue Jun 9 12:12:37 2015 us=237763 ERROR: Cannot open TUN/TAP dev /dev/net/tun: No such device (errno=19)
Tue Jun 9 12:12:37 2015 us=237814 Exiting due to fatal error
-
ERROR: Cannot open TUN/TAP dev /dev/net/tun: No such device (errno=19)
Heb je de VPN Server wel aan staan?
-
Ja hoor :lol:
-
Het vreemde is dat zowel OpenVPN als L2TP VPN betrokken zijn... :-/
-
:) Hij kan de TUN adapter niet openen. (no such device)
Wat laat ifconfig in PuTTY zien?
Als de TUN adapter er niet bijstaat zou ik VPN Server opnieuw installeren.
-
Het vreemde is dat zowel OpenVPN als L2TP VPN betrokken zijn... :-/
Omdat er geen TUN adapter aanwezig is. VPN heeft die nodig. (tun, die vindt je normaal gesproken in /dev/net/tun)
-
DiskStation> ifconfig
eth0 Link encap:Ethernet HWaddr 00:11:32:xx.xx.xx
inet addr:192.168.1.17 Bcast:192.168.1.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:123335 errors:0 dropped:0 overruns:0 frame:0
TX packets:76489 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:32669942 (31.1 MiB) TX bytes:36451751 (34.7 MiB)
eth1 Link encap:Ethernet HWaddr 00:11:xx.xx.xx
inet addr:extern ip Bcast:169.254.255.255 Mask:255.255.0.0
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:42031 errors:0 dropped:0 overruns:0 frame:0
TX packets:42031 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:5305339 (5.0 MiB) TX bytes:5305339 (5.0 MiB)
Heb reeds de VPN Server al geherinstalleerd. Ook reeds een oudere versie proberen te installeren... zonder resultaat.
-
Dit zie ik wanneer ik naar /dev/net/tun ga kijken:
DiskStation> ls -la
drwxr-xr-x 2 root root 60 Jun 9 09:52 .
drwxr-xr-x 14 root root 18720 Jun 9 12:12 ..
crw------- 1 root root 10, 200 Jun 9 12:12 tun
-
Er is geen TUN aanwezig, even checken of tun aanwezig is in /dev/net/
Omdat je al opnieuw geinstalleerd hebt kan de fout zoeken tijdrovend zijn.
Je zou een ticket kunnen inschieten of helemaal opnieuw beginnen (dubbele reset)
-
Gezien ik na de migratie een nieuwe hd heb toegevoegd, zal een dubbele reset effe moeten wachten want de uitbreiding is nog bezig (een hd 4TB toegevoegd).
Bedankt voor je hulp, MMD!
-
Ohw.....
Is nog aan het uitbreiden?
Dan zou ik toch nog even wachten tot dat klaar is.
-
Will co, thx :-)
-
Nog nieuws?
Kwan bij de buren hetzelfde tegen:
http://www.synology-forum.de/showthread.html?66849-OpenVPN-Module
-
Ik ben volledig opnieuw begonnen MMD. Drastisch maar een oplossing die werkt. :-)
Bedankt om erachter te vragen!
-
Gisteren heb ik zelf ook een DS213air gemigreerd naar een DS415+, hoewel de migratie prima verliep, kwam ik er later achter dat OpenVPN niet meer functioneerde. Na goed zoeken op het internet kwam ik een topic tegen op het Synology Forum: http://forum.synology.com/enu/viewtopic.php?f=173&t=71847&p=273586&hilit=Cannot+open+TUN%2FTAP#p273586 (http://forum.synology.com/enu/viewtopic.php?f=173&t=71847&p=273586&hilit=Cannot+open+TUN%2FTAP#p273586)
Hierin werd de commando's genoemd die voor mij het probleem heeft opgelost.
ls -al /dev/net/tun
insmod /lib/modules/tun.ko
Hiervoor dien je wel eerst SSH aan te zetten via PuTTY in te loggen met je root account.
-
Merkwaardig hoor, maar goed, het werkt voor jou ;)
Overigens, "ls -al /dev/net/tun" is niet nodig, deze laat alleen maar de inhoud van /dev/net/tun zien, meer niet.