Announcement

Collapse
No announcement yet.

knetworkmanager openvpn fails

Collapse
This topic is closed.
X
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
    #1

    knetworkmanager openvpn fails

    Hi, what am I using:
    Knetworkmanager 0.2.2
    openvpn 2.1c7-1ubuntu3.3
    network-manager-openvpn 0.3.2svn2342-1ubuntu4

    When running openvpn client.ovpn its working with a .p12 file.

    I configured the openvpn gui with X.509 connection type and exported the 3 certificate files with openssl like this:
    Code:
      
openssl pkcs12 -nocerts -in default.p12 -out userkey.pem
openssl pkcs12 -nokeys -clcerts -in default.p12 -out usercert.pem
openssl pkcs12 -nokeys -cacerts -in default.p12 -out userca.pem
    I selected TCP connection and cipher: BF-CBC as optional settings.

    My ovpn file looks like this:
    #OpenVPN Server conf
    tls-client
    client
    dev tun
    proto tcp
    tun-mtu 1500
    remote host.homelinux.net 1194
    pkcs12 portable.p12
    cipher BF-CBC
    verb 3
    ns-cert-type server

    This is the daemon.log output:
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> Will activate VPN connection 'VPN', service 'org.freedesktop.NetworkManager.openvpn', user_name 'gerrit', vpn_data 'connection-type / x509 / remote / host.homelinux.net / port / 1194 / ca / /etc/openvpn/cacert.pem / cert / /etc/openvpn/usercert.pem / key / /etc/openvpn/userkey.pem / cipher / BF-CBC / shared-key / / username / / local-ip / / remote-ip / / dev / tun / proto / tcp / ta-dir / none', route ''.
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN Activation (VPN) Stage 1 of 4 (Connection Prepare) scheduled...
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN Activation (VPN) Stage 1 of 4 (Connection Prepare) ran VPN service daemon org.freedesktop.NetworkManager.openvpn (PID 32641)
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN Activation (VPN) Stage 1 of 4 (Connection Prepare) complete.
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN Activation (VPN) Stage 2 of 4 (Connection Prepare Wait) scheduled...
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN service 'org.freedesktop.NetworkManager.openvpn' signaled state change 1 -> 6.
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN Activation (VPN) Stage 2 of 4 (Connection Prepare Wait) waiting...
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN Activation (VPN) Stage 2 of 4 (Connection Prepare Wait) complete.
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN Activation (VPN) Stage 3 of 4 (Connect) scheduled...
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN Activation (VPN) Stage 3 of 4 (Connect) sending connect request.
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN Activation (VPN) Stage 3 of 4 (Connect) request sent, waiting for reply...
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN service 'org.freedesktop.NetworkManager.openvpn' signaled state change 6 -> 3.
    Jun 16 16:00:29 TELINTUX nm-openvpn[32644]: OpenVPN 2.1_rc7 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] built on Jun 11 2008
    Jun 16 16:00:29 TELINTUX nm-openvpn[32644]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN Activation (VPN) Stage 3 of 4 (Connect) reply received.
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN Activation (VPN Stage 4 of 4 (IP Config Get) timeout scheduled...
    Jun 16 16:00:29 TELINTUX NetworkManager: <info> VPN Activation (VPN) Stage 3 of 4 (Connect) complete, waiting for IP configuration...
    Jun 16 16:00:44 TELINTUX nm-openvpn[32644]: ERROR: could not read Private Key username/password/ok from management interface
    Jun 16 16:00:44 TELINTUX nm-openvpn[32644]: Exiting
    Jun 16 16:00:44 TELINTUX NetworkManager: <WARN> nm_vpn_service_process_signal(): VPN failed for service 'org.freedesktop.NetworkManager.openvpn', signal 'ConnectFailed', with message 'The VPN login failed because the VPN program could not connect to the VPN server.'.
    Jun 16 16:00:44 TELINTUX NetworkManager: <info> VPN service 'org.freedesktop.NetworkManager.openvpn' signaled state change 3 -> 5.
    Jun 16 16:00:44 TELINTUX NetworkManager: <info> VPN service 'org.freedesktop.NetworkManager.openvpn' signaled state change 5 -> 6.
    Jun 16 16:00:44 TELINTUX NetworkManager: <WARN> nm_vpn_service_stop_connection(): (VPN Service org.freedesktop.NetworkManager.openvpn): could not stop connection 'VPN' because service was 6.

    Whats going wrong? I can see the private key can not be read but I never get a dialog to enter a password or something. Cannot find an entree in the KDE wallet.

    Thanks in advance
    Tags: None
    • Top
    • Bottom
    #2
    Re: knetworkmanager openvpn fails

    "catsix",

    If I were you, I'd start looking into this:

    Jun 16 16:00:29 TELINTUX nm-openvpn[32644]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
    Check out that link and I'm sure you find your next step...
    [hr]<br />System#1: Kubuntu 9.04 AMD64 (KDE 4.2)<br />AMD Athlon64-2x 4600+, 4GB DDR2-PC6400<br />nVidia GeForce 7300 / 512MB<br />System#2: Kubuntu 9.04 (KDE 4.2)<br />AMD Sempron 3300+, 2GB DDR-PC3200<br />
    • Top
    • Bottom

    Comment

      #3
      Re: knetworkmanager openvpn fails

      As it is a warning I do not believe this is the cause of the problem, and yes I already read the info behind that link.
      The real error is: could not read Private Key username/password/ok from management interface
      When you google it you get to this post and 2 other not really related to the error, that's why I'm here
      • Top
      • Bottom

      Comment

        #4
        Re: knetworkmanager openvpn fails

        Any input ?
        • Top
        • Bottom

        Comment

          #5
          Re: knetworkmanager openvpn fails

          i have the same error when trying to connect to a openvpn server with 509 certificate and passphrase using knetworkmanager. conf. connecting with openvpn on the commandline works fine.
          • Top
          • Bottom

          Comment

            #6
            Re: knetworkmanager openvpn fails

            Hi,

            the same problem here. I test this on Kubuntu Hardy. On the same Machine Gnome exists and with Gnome and Network-Manager, OpenVPN and vpnc works fine.

            What is wrong with Knetworkmanager?

            Regards

            Obelix
            • Top
            • Bottom

            Comment

              #7
              Re: knetworkmanager openvpn fails

              I can confirm that xfce doesn't have this problem either.
              • Top
              • Bottom

              Comment

                #8
                Re: knetworkmanager openvpn fails

                Hi,

                i remove network-manager-kde and install network-manager-gnome. To start nm i copy /etc/xdg/autostart/nm-applet.desktop to ~/.kde/Autostart/

                It works on KDE 4 too

                Regards

                Obelix
                • Top
                • Bottom

                Comment

                  #9
                  Re: knetworkmanager openvpn fails

                  In the mean time I have upgraded to kde4 and networkmanager 0.7
                  I use explicit tcp connection, but it looks like the gui cannot save this setting.
                  anyway, now I get this output:

                  Code:
                  Nov 5 13:55:36 TELINTUX NetworkManager: <info> Starting VPN service 'org.freedesktop.NetworkManager.openvpn'...
Nov 5 13:55:36 TELINTUX NetworkManager: <info> VPN service 'org.freedesktop.NetworkManager.openvpn' started (org.freedesktop.NetworkManager.openvpn),PID 31410
Nov 5 13:55:36 TELINTUX NetworkManager: <info> VPN service 'org.freedesktop.NetworkManager.openvpn' just appeared, activating connections
Nov 5 13:55:36 TELINTUX NetworkManager: <info> VPN plugin state changed: 1
Nov 5 13:55:36 TELINTUX NetworkManager: <info> VPN service 'org.freedesktop.NetworkManager.openvpn' disappeared, cancelling connections
Nov 5 13:55:36 TELINTUX NetworkManager: <WARN> connection_state_changed(): The name org.freedesktop.NetworkManager.openvpn was not provided by any .service files
Nov 5 13:55:36 TELINTUX NetworkManager: <info> Policy set 'telwarzone' (wlan0) as default for routing and DNS.
Nov 5 13:55:36 TELINTUX NetworkManager: <WARN> vpn_service_watch_cb(): VPN service 'org.freedesktop.NetworkManager.openvpn' died with signal 11
                  • Top
                  • Bottom

                  Comment

                  Previous template Next
                  Working...
                  X