Auteur Topic: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.  (gelezen 8470 keer)

Offline Tim__

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 353
  • -Ontvangen: 81
  • Berichten: 975
L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Gepost op: 09 juni 2015, 10:30:33 »
Hoi hoi,

Ik heb iemand zijn Synology gemigreerd van een 213+ naar een 415+. De migratie is goed verlopen na het volgen van het stappenplan op de website van Synology. Nadien heb ik geüpgrade van DSM 5.1 naar DSM 5.2. Nadien bleek goed te werken tot we de VPN server testten... bij L2TP VPN krijgen we de melding dat de VPN Server niet bereikbaar is (geen andere poorten genomen en de forward naar het fix ip staat nog steeds actief).
Ook bij OpenVPN krijgen we geen verbinding. Ik voeg de log van OpenVPN toe.
Jun 09 10:17:54: Nakijken of verbinding beschikbaar is...
Jun 09 10:17:54: De verbinding is beschikbaar. Er wordt gepoogd de verbinding op te zetten.
Jun 09 10:17:54: OpenVPN 2.3.6 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on Apr  5 2015
Jun 09 10:17:54: library versions: OpenSSL 1.0.2a 19 Mar 2015, LZO 2.09
Jun 09 10:17:57: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Jun 09 10:17:57: UDPv4 link local (bound): [undef]
Jun 09 10:17:57: UDPv4 link remote: [AF_INET]xx.xx.xx..206:1194
Jun 09 10:18:57: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jun 09 10:18:57: TLS Error: TLS handshake failed
Jun 09 10:18:57: SIGUSR1[soft,tls-error] received, process restarting
Jun 09 10:19:08: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Jun 09 10:19:08: UDPv4 link local (bound): [undef]
Jun 09 10:19:08: UDPv4 link remote: [AF_INET]xx.xx.xx.206:1194
Jun 09 10:20:08: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jun 09 10:20:08: TLS Error: TLS handshake failed
Jun 09 10:20:08: SIGUSR1[soft,tls-error] received, process restarting
Jun 09 10:20:18: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Jun 09 10:20:18: UDPv4 link local (bound): [undef]
Jun 09 10:20:18: UDPv4 link remote: [AF_INET]xx.xx.xx.206:1194

Wie zet mij op weg aub?
  • Mijn Synology: 1517+
  • HDD's: 4 x 4TB WD RED
  • Extra's: 215j & 218+

Offline Pippin

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 103
  • -Ontvangen: 529
  • Berichten: 2.724
  • a.k.a. MMD
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #1 Gepost op: 09 juni 2015, 10:49:03 »
TLS Error

Als er verder niets anders is dan voorheen en IP`s en poorten juist zijn moet het bijna wel in de Firewall/port forwarding zitten, d.w.z. bij een standaard installatie van VPN.
DS414
OpenVPN #1: Beter beveiligen OpenVPN #2: Beter beveiligen als client

I gloomily came to the ironic conclusion that if you take a highly intelligent person and give them the best possible, elite education, then you will most likely wind up with an academic who is completely impervious to reality.
Halton Arp

Offline Pippin

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 103
  • -Ontvangen: 529
  • Berichten: 2.724
  • a.k.a. MMD
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #2 Gepost op: 09 juni 2015, 10:53:04 »
En exporteer het certificaat van de server opnieuw.
DS414
OpenVPN #1: Beter beveiligen OpenVPN #2: Beter beveiligen als client

I gloomily came to the ironic conclusion that if you take a highly intelligent person and give them the best possible, elite education, then you will most likely wind up with an academic who is completely impervious to reality.
Halton Arp

Offline Tim__

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 353
  • -Ontvangen: 81
  • Berichten: 975
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #3 Gepost op: 09 juni 2015, 10:53:24 »
Bedankt voor je hulp, tips!

- Ik heb hetzelfde interne ip-adres als voorheen, dus de 415+ heeft hetzelfde interne ip-adres als de 213+.
- De ddns werk ook al.
- Er zijn geen poorten extra open of dicht gezet.
- Oude certificaten werden reeds geïmporteerd => geen succes.
- De firewall van de Synology werd reeds uitgeschakeld => geen succes.
- De DS415+ werd reeds in DMZ gezet => geen succes.
  • Mijn Synology: 1517+
  • HDD's: 4 x 4TB WD RED
  • Extra's: 215j & 218+

Offline Tim__

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 353
  • -Ontvangen: 81
  • Berichten: 975
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #4 Gepost op: 09 juni 2015, 10:54:33 »
En exporteer het certificaat van de server opnieuw.

Ook reeds gedaan en geïmporteerd in Viscosity op de Mac => geen succes.
  • Mijn Synology: 1517+
  • HDD's: 4 x 4TB WD RED
  • Extra's: 215j & 218+

Offline Pippin

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 103
  • -Ontvangen: 529
  • Berichten: 2.724
  • a.k.a. MMD
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #5 Gepost op: 09 juni 2015, 10:55:14 »
Zie mijn tweede reactie.

Dus niet oude importeren maar nieuwe exporteren en dan importeren bij client.
DS414
OpenVPN #1: Beter beveiligen OpenVPN #2: Beter beveiligen als client

I gloomily came to the ironic conclusion that if you take a highly intelligent person and give them the best possible, elite education, then you will most likely wind up with an academic who is completely impervious to reality.
Halton Arp

Offline Tim__

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 353
  • -Ontvangen: 81
  • Berichten: 975
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #6 Gepost op: 09 juni 2015, 10:56:31 »
Yup, ook een nieuwe export met aanpassing van het ip naar een ddns heb ik gedaan.
  • Mijn Synology: 1517+
  • HDD's: 4 x 4TB WD RED
  • Extra's: 215j & 218+

Offline Pippin

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 103
  • -Ontvangen: 529
  • Berichten: 2.724
  • a.k.a. MMD
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #7 Gepost op: 09 juni 2015, 10:56:40 »
:) We zijn te snel...

Heb je een log van de server?
DS414
OpenVPN #1: Beter beveiligen OpenVPN #2: Beter beveiligen als client

I gloomily came to the ironic conclusion that if you take a highly intelligent person and give them the best possible, elite education, then you will most likely wind up with an academic who is completely impervious to reality.
Halton Arp

Offline Tim__

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 353
  • -Ontvangen: 81
  • Berichten: 975
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #8 Gepost op: 09 juni 2015, 10:57:13 »
Waar kan ik die halen?
  • Mijn Synology: 1517+
  • HDD's: 4 x 4TB WD RED
  • Extra's: 215j & 218+

Offline Pippin

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 103
  • -Ontvangen: 529
  • Berichten: 2.724
  • a.k.a. MMD
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #9 Gepost op: 09 juni 2015, 11:02:43 »
Navigeer naar /usr/syno/etc/packages/VPNCenter/openvpn

Stop eerst de VPN Server want dan krijg je niet een te groot log.

Open openvpn.conf
Wijzig verb 3 naar verb 4
Haal # weg voor log-append /var/log/openvpn.log
Log vindt je dan in /var/log
VPN Server weer starten en probeer te verbinden.
DS414
OpenVPN #1: Beter beveiligen OpenVPN #2: Beter beveiligen als client

I gloomily came to the ironic conclusion that if you take a highly intelligent person and give them the best possible, elite education, then you will most likely wind up with an academic who is completely impervious to reality.
Halton Arp

Offline Tim__

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 353
  • -Ontvangen: 81
  • Berichten: 975
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #10 Gepost op: 09 juni 2015, 11:21:33 »
Hierbij de out-put van /var/log/openvpn.log

Tue Jun  9 12:10:37 2015 us=372788   client = DISABLED
Tue Jun  9 12:10:37 2015 us=372813   pull = DISABLED
Tue Jun  9 12:10:37 2015 us=372837   auth_user_pass_file = '[UNDEF]'f
Tue Jun  9 12:10:37 2015 us=372863 OpenVPN 2.3.6 i686-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Apr 29 2015
Tue Jun  9 12:10:37 2015 us=372900 library versions: OpenSSL 1.0.1m-fips 19 Mar 2015, LZO 2.08
Tue Jun  9 12:10:37 2015 us=373070 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1195
Tue Jun  9 12:10:37 2015 RADIUS-PLUGIN: Configfile name: /var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf.
Tue Jun  9 12:10:37 2015 us=374192 PLUGIN_INIT: POST /var/packages/VPNCenter/target/lib/radiusplugin.so '[/var/packages/VPNCenter/target/lib/radiusplugin.so] [/var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf]' intercepted=PLUGIN_AUTH_USER_PASS_VERIFY|PLUGIN_CLIENT_CONNECT|PLUGIN_CLIENT_DISCONNECT
Tue Jun  9 12:10:37 2015 us=385948 Diffie-Hellman initialized with 1024 bit key
Tue Jun  9 12:10:37 2015 us=385998 WARNING: POTENTIALLY DANGEROUS OPTION --client-cert-not-required may accept clients which do not present a certificate
Tue Jun  9 12:10:37 2015 us=386815 TLS-Auth MTU parms [ L:1542 D:138 EF:3 EB:0 ET: EL: ]
Tue Jun  9 12:10:37 2015 us=386874 Socket Buffers: R=[212992->131072] S=[212992->131072]
Tue Jun  9 12:10:37 2015 us=387129 ROUTE_GATEWAY 192.168.1.1/255.255.255.0 IFACE=eth0 HWADDR=00:11:32:xx:xx:xx
Tue Jun  9 12:10:37 2015 us=388306 ERROR: Cannot open TUN/TAP dev /dev/net/tun: No such device (errno=19)
Tue Jun  9 12:10:37 2015 us=388356 Exiting due to fatal error
Tue Jun  9 12:12:37 2015 us=216403 Current Parameter Settings:
Tue Jun  9 12:12:37 2015 us=216538   config = 'openvpn.conf'
Tue Jun  9 12:12:37 2015 us=216565   mode = 1
Tue Jun  9 12:12:37 2015 us=216592   persist_config = DISABLED
Tue Jun  9 12:12:37 2015 us=216638   persist_mode = 1
Tue Jun  9 12:12:37 2015 us=216663   show_ciphers = DISABLED
Tue Jun  9 12:12:37 2015 us=216688   show_digests = DISABLED
Tue Jun  9 12:12:37 2015 us=216712   show_engines = DISABLED
Tue Jun  9 12:12:37 2015 us=216753   genkey = DISABLED
Tue Jun  9 12:12:37 2015 us=216778   key_pass_file = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=216803   show_tls_ciphers = DISABLED
Tue Jun  9 12:12:37 2015 us=216830 Connection profiles [default]:
Tue Jun  9 12:12:37 2015 us=216855   proto = udp6
Tue Jun  9 12:12:37 2015 us=216880   local = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=216904   local_port = 1194
Tue Jun  9 12:12:37 2015 us=216929   remote = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=216953   remote_port = 1194
Tue Jun  9 12:12:37 2015 us=216977   remote_float = DISABLED
Tue Jun  9 12:12:37 2015 us=217002   bind_defined = DISABLED
Tue Jun  9 12:12:37 2015 us=217026   bind_local = ENABLED
Tue Jun  9 12:12:37 2015 us=217051   connect_retry_seconds = 5
Tue Jun  9 12:12:37 2015 us=217075   connect_timeout = 10
Tue Jun  9 12:12:37 2015 us=217099   connect_retry_max = 0
Tue Jun  9 12:12:37 2015 us=217124   socks_proxy_server = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=217149   socks_proxy_port = 0
Tue Jun  9 12:12:37 2015 us=217173   socks_proxy_retry = DISABLED
Tue Jun  9 12:12:37 2015 us=217198   tun_mtu = 1500
Tue Jun  9 12:12:37 2015 us=217222   tun_mtu_defined = ENABLED
Tue Jun  9 12:12:37 2015 us=217247   link_mtu = 1500
Tue Jun  9 12:12:37 2015 us=217271   link_mtu_defined = DISABLED
Tue Jun  9 12:12:37 2015 us=217296   tun_mtu_extra = 0
Tue Jun  9 12:12:37 2015 us=217320   tun_mtu_extra_defined = DISABLED
Tue Jun  9 12:12:37 2015 us=217345   mtu_discover_type = -1
Tue Jun  9 12:12:37 2015 us=217369   fragment = 0
Tue Jun  9 12:12:37 2015 us=217394   mssfix = 1450
Tue Jun  9 12:12:37 2015 us=217419   explicit_exit_notification = 0
Tue Jun  9 12:12:37 2015 us=217445 Connection profiles END
Tue Jun  9 12:12:37 2015 us=217470   remote_random = DISABLED
Tue Jun  9 12:12:37 2015 us=217494   ipchange = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=217518   dev = 'tun'
Tue Jun  9 12:12:37 2015 us=217545   dev_type = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=217571   dev_node = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=217606   lladdr = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=217633   topology = 1
Tue Jun  9 12:12:37 2015 us=217658   tun_ipv6 = DISABLED
Tue Jun  9 12:12:37 2015 us=217682   ifconfig_local = '10.5.0.1'
Tue Jun  9 12:12:37 2015 us=217707   ifconfig_remote_netmask = '10.5.0.2'
Tue Jun  9 12:12:37 2015 us=217731   ifconfig_noexec = DISABLED
Tue Jun  9 12:12:37 2015 us=217756   ifconfig_nowarn = DISABLED
Tue Jun  9 12:12:37 2015 us=217780   ifconfig_ipv6_local = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=217805   ifconfig_ipv6_netbits = 0
Tue Jun  9 12:12:37 2015 us=217829   ifconfig_ipv6_remote = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=217854   shaper = 0
Tue Jun  9 12:12:37 2015 us=217878   mtu_test = 0
Tue Jun  9 12:12:37 2015 us=217902   mlock = DISABLED
Tue Jun  9 12:12:37 2015 us=217927   keepalive_ping = 10
Tue Jun  9 12:12:37 2015 us=217953   keepalive_timeout = 60
Tue Jun  9 12:12:37 2015 us=217978   inactivity_timeout = 0
Tue Jun  9 12:12:37 2015 us=218003   ping_send_timeout = 10
Tue Jun  9 12:12:37 2015 us=218027   ping_rec_timeout = 120
Tue Jun  9 12:12:37 2015 us=218052   ping_rec_timeout_action = 2
Tue Jun  9 12:12:37 2015 us=218077   ping_timer_remote = DISABLED
Tue Jun  9 12:12:37 2015 us=218101   remap_sigusr1 = 0
Tue Jun  9 12:12:37 2015 us=218126   persist_tun = ENABLED
Tue Jun  9 12:12:37 2015 us=218150   persist_local_ip = DISABLED
Tue Jun  9 12:12:37 2015 us=218175   persist_remote_ip = DISABLED
Tue Jun  9 12:12:37 2015 us=218199   persist_key = ENABLED
Tue Jun  9 12:12:37 2015 us=218223   passtos = DISABLED
Tue Jun  9 12:12:37 2015 us=218248   resolve_retry_seconds = 1000000000
Tue Jun  9 12:12:37 2015 us=218272   username = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=218296   groupname = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=218321   chroot_dir = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=218346   cd_dir = '/usr/syno/etc/packages/VPNCenter/openvpn'
Tue Jun  9 12:12:37 2015 us=218370   writepid = '/var/run/ovpn_server.pid'
Tue Jun  9 12:12:37 2015 us=218394   up_script = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=218418   down_script = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=218451   down_pre = DISABLED
Tue Jun  9 12:12:37 2015 us=218476   up_restart = DISABLED
Tue Jun  9 12:12:37 2015 us=218500   up_delay = DISABLED
Tue Jun  9 12:12:37 2015 us=218525   daemon = ENABLED
Tue Jun  9 12:12:37 2015 us=218549   inetd = 0
Tue Jun  9 12:12:37 2015 us=218573   log = ENABLED
Tue Jun  9 12:12:37 2015 us=218603   suppress_timestamps = DISABLED
Tue Jun  9 12:12:37 2015 us=218630   nice = 0
Tue Jun  9 12:12:37 2015 us=218655   verbosity = 4
Tue Jun  9 12:12:37 2015 us=218679   mute = 0
Tue Jun  9 12:12:37 2015 us=218704   gremlin = 0
Tue Jun  9 12:12:37 2015 us=218729   status_file = '/tmp/ovpn_status_2_result'
Tue Jun  9 12:12:37 2015 us=218754   status_file_version = 2
Tue Jun  9 12:12:37 2015 us=218778   status_file_update_freq = 30
Tue Jun  9 12:12:37 2015 us=218802   occ = ENABLED
Tue Jun  9 12:12:37 2015 us=218827   rcvbuf = 65536
Tue Jun  9 12:12:37 2015 us=218851   sndbuf = 65536
Tue Jun  9 12:12:37 2015 us=218876   mark = 0
Tue Jun  9 12:12:37 2015 us=218900   sockflags = 0
Tue Jun  9 12:12:37 2015 us=218924   fast_io = DISABLED
Tue Jun  9 12:12:37 2015 us=218948   lzo = 7
Tue Jun  9 12:12:37 2015 us=218973   route_script = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=218997   route_default_gateway = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=219022   route_default_metric = 0
Tue Jun  9 12:12:37 2015 us=219047   route_noexec = DISABLED
Tue Jun  9 12:12:37 2015 us=219071   route_delay = 0
Tue Jun  9 12:12:37 2015 us=219096   route_delay_window = 30
Tue Jun  9 12:12:37 2015 us=219121   route_delay_defined = DISABLED
Tue Jun  9 12:12:37 2015 us=219146   route_nopull = DISABLED
Tue Jun  9 12:12:37 2015 us=219170   route_gateway_via_dhcp = DISABLED
Tue Jun  9 12:12:37 2015 us=219195   max_routes = 100
Tue Jun  9 12:12:37 2015 us=219220   allow_pull_fqdn = DISABLED
Tue Jun  9 12:12:37 2015 us=219245   route 10.5.0.0/255.255.255.0/nil/nil
Tue Jun  9 12:12:37 2015 us=219270   management_addr = '127.0.0.1'
Tue Jun  9 12:12:37 2015 us=219295   management_port = 1195
Tue Jun  9 12:12:37 2015 us=219320   management_user_pass = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=219345   management_log_history_cache = 250
Tue Jun  9 12:12:37 2015 us=219369   management_echo_buffer_size = 100
Tue Jun  9 12:12:37 2015 us=219394   management_write_peer_info_file = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=219419   management_client_user = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=219443   management_client_group = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=219468   management_flags = 0
Tue Jun  9 12:12:37 2015 us=219497   plugin[0] /var/packages/VPNCenter/target/lib/radiusplugin.so '[/var/packages/VPNCenter/target/lib/radiusplugin.so] [/var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf]'
Tue Jun  9 12:12:37 2015 us=219522   shared_secret_file = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=219547   key_direction = 0
Tue Jun  9 12:12:37 2015 us=219572   ciphername_defined = ENABLED
Tue Jun  9 12:12:37 2015 us=219602   ciphername = 'BF-CBC'
Tue Jun  9 12:12:37 2015 us=219628   authname_defined = ENABLED
Tue Jun  9 12:12:37 2015 us=219653   authname = 'SHA1'
Tue Jun  9 12:12:37 2015 us=219678   prng_hash = 'SHA1'
Tue Jun  9 12:12:37 2015 us=219703   prng_nonce_secret_len = 16
Tue Jun  9 12:12:37 2015 us=219727   keysize = 0
Tue Jun  9 12:12:37 2015 us=219752   engine = DISABLED
Tue Jun  9 12:12:37 2015 us=219776   replay = ENABLED
Tue Jun  9 12:12:37 2015 us=219801   mute_replay_warnings = DISABLED
Tue Jun  9 12:12:37 2015 us=219826   replay_window = 64
Tue Jun  9 12:12:37 2015 us=219850   replay_time = 15
Tue Jun  9 12:12:37 2015 us=219875   packet_id_file = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=219900   use_iv = ENABLED
Tue Jun  9 12:12:37 2015 us=219924   test_crypto = DISABLED
Tue Jun  9 12:12:37 2015 us=219949   tls_server = ENABLED
Tue Jun  9 12:12:37 2015 us=219973   tls_client = DISABLED
Tue Jun  9 12:12:37 2015 us=219998   key_method = 2
Tue Jun  9 12:12:37 2015 us=220023   ca_file = '/var/packages/VPNCenter/target/etc/openvpn/keys/ca.crt'
Tue Jun  9 12:12:37 2015 us=220047   ca_path = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=220081   dh_file = '/var/packages/VPNCenter/target/etc/openvpn/keys/dh1024.pem'
Tue Jun  9 12:12:37 2015 us=220106   cert_file = '/var/packages/VPNCenter/target/etc/openvpn/keys/server.crt'
Tue Jun  9 12:12:37 2015 us=220131   priv_key_file = '/var/packages/VPNCenter/target/etc/openvpn/keys/server.key'
Tue Jun  9 12:12:37 2015 us=220156   pkcs12_file = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=220180   cipher_list = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=220205   tls_verify = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=220229   tls_export_cert = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=220254   verify_x509_type = 0
Tue Jun  9 12:12:37 2015 us=220278   verify_x509_name = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=220303   crl_file = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=220327   ns_cert_type = 0
Tue Jun  9 12:12:37 2015 us=220352   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220377   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220401   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220426   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220451   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220475   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220500   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220524   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220549   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220573   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220609   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220637   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220661   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220686   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220711   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220735   remote_cert_ku[i] = 0
Tue Jun  9 12:12:37 2015 us=220760   remote_cert_eku = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=220784   ssl_flags = 3
Tue Jun  9 12:12:37 2015 us=220809   tls_timeout = 2
Tue Jun  9 12:12:37 2015 us=220834   renegotiate_bytes = 0
Tue Jun  9 12:12:37 2015 us=220858   renegotiate_packets = 0
Tue Jun  9 12:12:37 2015 us=220883   renegotiate_seconds = 0
Tue Jun  9 12:12:37 2015 us=220907   handshake_window = 60
Tue Jun  9 12:12:37 2015 us=220932   transition_window = 3600
Tue Jun  9 12:12:37 2015 us=220956   single_session = DISABLED
Tue Jun  9 12:12:37 2015 us=220981   push_peer_info = DISABLED
Tue Jun  9 12:12:37 2015 us=221005   tls_exit = DISABLED
Tue Jun  9 12:12:37 2015 us=221029   tls_auth_file = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=221056   server_network = 10.5.0.0
Tue Jun  9 12:12:37 2015 us=221083   server_netmask = 255.255.255.0
Tue Jun  9 12:12:37 2015 us=221114   server_network_ipv6 = ::
Tue Jun  9 12:12:37 2015 us=221140   server_netbits_ipv6 = 0
Tue Jun  9 12:12:37 2015 us=221167   server_bridge_ip = 0.0.0.0
Tue Jun  9 12:12:37 2015 us=221194   server_bridge_netmask = 0.0.0.0
Tue Jun  9 12:12:37 2015 us=221221   server_bridge_pool_start = 0.0.0.0
Tue Jun  9 12:12:37 2015 us=221247   server_bridge_pool_end = 0.0.0.0
Tue Jun  9 12:12:37 2015 us=221272   push_entry = 'route 10.5.0.0 255.255.255.0'
Tue Jun  9 12:12:37 2015 us=221297   push_entry = 'route 10.5.0.1'
Tue Jun  9 12:12:37 2015 us=221322   push_entry = 'topology net30'
Tue Jun  9 12:12:37 2015 us=221347   push_entry = 'ping 10'
Tue Jun  9 12:12:37 2015 us=221371   push_entry = 'ping-restart 60'
Tue Jun  9 12:12:37 2015 us=221396   ifconfig_pool_defined = ENABLED
Tue Jun  9 12:12:37 2015 us=221422   ifconfig_pool_start = 10.5.0.4
Tue Jun  9 12:12:37 2015 us=221449   ifconfig_pool_end = 10.5.0.251
Tue Jun  9 12:12:37 2015 us=221479   ifconfig_pool_netmask = 0.0.0.0
Tue Jun  9 12:12:37 2015 us=221505   ifconfig_pool_persist_filename = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=221530   ifconfig_pool_persist_refresh_freq = 600
Tue Jun  9 12:12:37 2015 us=221555   ifconfig_ipv6_pool_defined = DISABLED
Tue Jun  9 12:12:37 2015 us=221581   ifconfig_ipv6_pool_base = ::
Tue Jun  9 12:12:37 2015 us=221614   ifconfig_ipv6_pool_netbits = 0
Tue Jun  9 12:12:37 2015 us=221639   n_bcast_buf = 256
Tue Jun  9 12:12:37 2015 us=221664   tcp_queue_limit = 64
Tue Jun  9 12:12:37 2015 us=221697   real_hash_size = 256
Tue Jun  9 12:12:37 2015 us=221722   virtual_hash_size = 256
Tue Jun  9 12:12:37 2015 us=221746   client_connect_script = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=221771   learn_address_script = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=221796   client_disconnect_script = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=221820   client_config_dir = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=221845   ccd_exclusive = DISABLED
Tue Jun  9 12:12:37 2015 us=221869   tmp_dir = '/tmp'
Tue Jun  9 12:12:37 2015 us=221894   push_ifconfig_defined = DISABLED
Tue Jun  9 12:12:37 2015 us=221920   push_ifconfig_local = 0.0.0.0
Tue Jun  9 12:12:37 2015 us=221947   push_ifconfig_remote_netmask = 0.0.0.0
Tue Jun  9 12:12:37 2015 us=221972   push_ifconfig_ipv6_defined = DISABLED
Tue Jun  9 12:12:37 2015 us=221998   push_ifconfig_ipv6_local = ::/0
Tue Jun  9 12:12:37 2015 us=222024   push_ifconfig_ipv6_remote = ::
Tue Jun  9 12:12:37 2015 us=222049   enable_c2c = DISABLED
Tue Jun  9 12:12:37 2015 us=222073   duplicate_cn = ENABLED
Tue Jun  9 12:12:37 2015 us=222098   cf_max = 0
Tue Jun  9 12:12:37 2015 us=222123   cf_per = 0
Tue Jun  9 12:12:37 2015 us=222148   max_clients = 20
Tue Jun  9 12:12:37 2015 us=222172   max_routes_per_client = 256
Tue Jun  9 12:12:37 2015 us=222197   auth_user_pass_verify_script = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=222222   auth_user_pass_verify_script_via_file = DISABLED
Tue Jun  9 12:12:37 2015 us=222246   port_share_host = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=222271   port_share_port = 0
Tue Jun  9 12:12:37 2015 us=222296   client = DISABLED
Tue Jun  9 12:12:37 2015 us=222320   pull = DISABLED
Tue Jun  9 12:12:37 2015 us=222345   auth_user_pass_file = '[UNDEF]'
Tue Jun  9 12:12:37 2015 us=222371 OpenVPN 2.3.6 i686-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Apr 29 2015
Tue Jun  9 12:12:37 2015 us=222407 library versions: OpenSSL 1.0.1m-fips 19 Mar 2015, LZO 2.08
Tue Jun  9 12:12:37 2015 us=222580 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1195
Tue Jun  9 12:12:37 2015 RADIUS-PLUGIN: Configfile name: /var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf.
Tue Jun  9 12:12:37 2015 us=223720 PLUGIN_INIT: POST /var/packages/VPNCenter/target/lib/radiusplugin.so '[/var/packages/VPNCenter/target/lib/radiusplugin.so] [/var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf]' intercepted=PLUGIN_AUTH_USER_PASS_VERIFY|PLUGIN_CLIENT_CONNECT|PLUGIN_CLIENT_DISCONNECT
Tue Jun  9 12:12:37 2015 us=235430 Diffie-Hellman initialized with 1024 bit key
Tue Jun  9 12:12:37 2015 us=235474 WARNING: POTENTIALLY DANGEROUS OPTION --client-cert-not-required may accept clients which do not present a certificate
Tue Jun  9 12:12:37 2015 us=236207 TLS-Auth MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Tue Jun  9 12:12:37 2015 us=236265 Socket Buffers: R=[212992->131072] S=[212992->131072]
Tue Jun  9 12:12:37 2015 us=236526 ROUTE_GATEWAY 192.1.168.1/255.255.255.0 IFACE=eth0 HWADDR=00:11:32:41:5e:f9
Tue Jun  9 12:12:37 2015 us=237763 ERROR: Cannot open TUN/TAP dev /dev/net/tun: No such device (errno=19)
Tue Jun  9 12:12:37 2015 us=237814 Exiting due to fatal error
  • Mijn Synology: 1517+
  • HDD's: 4 x 4TB WD RED
  • Extra's: 215j & 218+

Offline Pippin

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 103
  • -Ontvangen: 529
  • Berichten: 2.724
  • a.k.a. MMD
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #11 Gepost op: 09 juni 2015, 11:24:15 »
ERROR: Cannot open TUN/TAP dev /dev/net/tun: No such device (errno=19)

Heb je de VPN Server wel aan staan?
DS414
OpenVPN #1: Beter beveiligen OpenVPN #2: Beter beveiligen als client

I gloomily came to the ironic conclusion that if you take a highly intelligent person and give them the best possible, elite education, then you will most likely wind up with an academic who is completely impervious to reality.
Halton Arp

Offline Tim__

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 353
  • -Ontvangen: 81
  • Berichten: 975
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #12 Gepost op: 09 juni 2015, 11:25:27 »
Ja hoor  :lol:

  • Mijn Synology: 1517+
  • HDD's: 4 x 4TB WD RED
  • Extra's: 215j & 218+

Offline Tim__

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 353
  • -Ontvangen: 81
  • Berichten: 975
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #13 Gepost op: 09 juni 2015, 11:26:00 »
Het vreemde is dat zowel OpenVPN als L2TP VPN betrokken zijn... :-/
  • Mijn Synology: 1517+
  • HDD's: 4 x 4TB WD RED
  • Extra's: 215j & 218+

Offline Pippin

  • MVP
  • *
  • Bedankjes
  • -Gegeven: 103
  • -Ontvangen: 529
  • Berichten: 2.724
  • a.k.a. MMD
Re: L2TP en OpenVPN Server werken niet meer na migratie + upgrade.
« Reactie #14 Gepost op: 09 juni 2015, 11:29:32 »
:) Hij kan de TUN adapter niet openen. (no such device)


Wat laat ifconfig in PuTTY zien?

Als de TUN adapter er niet bijstaat zou ik VPN Server opnieuw installeren.
DS414
OpenVPN #1: Beter beveiligen OpenVPN #2: Beter beveiligen als client

I gloomily came to the ironic conclusion that if you take a highly intelligent person and give them the best possible, elite education, then you will most likely wind up with an academic who is completely impervious to reality.
Halton Arp


 

VPN L2TP verbreekt automatisch

Gestart door dirklammersBoard VPN Server

Reacties: 6
Gelezen: 2554
Laatste bericht 26 november 2017, 17:47:32
door dirklammers
VPN L2TP/IPSec of PPTP

Gestart door r3vquBoard VPN Server

Reacties: 5
Gelezen: 3370
Laatste bericht 30 april 2014, 23:04:30
door Richard67
IP adres bij gebruik VPN Plus anders dan bij L2TP

Gestart door pauljbBoard Synology Router

Reacties: 2
Gelezen: 962
Laatste bericht 05 augustus 2019, 19:08:45
door pauljb
VPN L2TP / IPsec verbinding problemen op Android.

Gestart door poertjeBoard VPN Server

Reacties: 16
Gelezen: 10782
Laatste bericht 30 augustus 2016, 00:30:31
door Babylonia
L2TP/IPSec nog steeds goede keus

Gestart door dirklammersBoard VPN Server

Reacties: 2
Gelezen: 1086
Laatste bericht 27 maart 2021, 08:01:36
door dirklammers