Openvpn with and without NetworkManager

Connection sharing, Firewall, Samba..etc
Forum rules
Before you post please read this

Openvpn with and without NetworkManager

Postby gotcha on Sun Oct 02, 2011 7:08 am

Linux mint lmde 11 update pack 3

I'm trying to set up a vpn connection to my home network via openvpn.

Took the conf file I'm using on my windows box (working fine there) and used it to start the connection via console.
No connect...
Did a little (quite a lot in fact) research on the net...
Added an entry for tap0 device in /etc/network/interfaces
if-up tap0 brought up the device and I got the connect to my home net.
Only problem here was, after closing the connection the resolf.conf still had my home router as dns -> no more surfing after vpn was shut down ...
Any ideas as how to fix that ... other than manually changing the dns setup each time I used the vpn?

Then I learned about the NetworkManager and I thought I'd give it a try.
installed network-manager-openvpn and network-manager-openvpn-gnome

Configured the connection via GUI.
Trying to start the connection via the widget fails.

Syslog:

Oct 2 11:38:54 bart NetworkManager[1470]: <info> Starting VPN service 'openvpn'...
Oct 2 11:38:54 bart NetworkManager[1470]: <info> VPN service 'openvpn' started (org.freedesktop.NetworkManager.openvpn), PID 4445
Oct 2 11:38:54 bart NetworkManager[1470]: <info> VPN service 'openvpn' appeared; activating connections
Oct 2 11:38:54 bart NetworkManager[1470]: <info> VPN plugin state changed: 3
Oct 2 11:38:54 bart NetworkManager[1470]: <info> VPN connection 'VPN connection 1' (Connect) reply received.
Oct 2 11:38:54 bart nm-openvpn[4448]: OpenVPN 2.2.0 x86_64-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [eurephia] [MH] [PF_INET6] [IPv6 payload 20110424-2 (2.2RC2)] built on Jun 16 2011
Oct 2 11:38:54 bart nm-openvpn[4448]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Oct 2 11:38:54 bart nm-openvpn[4448]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Oct 2 11:38:54 bart nm-openvpn[4448]: LZO compression initialized
Oct 2 11:38:55 bart nm-openvpn[4448]: UDPv4 link local: [undef]
Oct 2 11:38:55 bart nm-openvpn[4448]: UDPv4 link remote: [AF_INET]92.78.184.182:1194
Oct 2 11:38:56 bart nm-openvpn[4448]: [server] Peer Connection Initiated with [AF_INET]92.78.184.182:1194
Oct 2 11:38:58 bart vmnetBridge: RTM_NEWLINK: name:tap0 index:6 flags:0x00001002
Oct 2 11:38:58 bart nm-openvpn[4448]: TUN/TAP device tap0 opened
Oct 2 11:38:58 bart nm-openvpn[4448]: /usr/lib/NetworkManager/nm-openvpn-service-openvpn-helper tap0 1500 1574 init
Oct 2 11:38:58 bart NetworkManager[1470]: SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/tap0, iface: tap0)
Oct 2 11:38:58 bart NetworkManager[1470]: SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/tap0, iface: tap0): no ifupdown configuration found.
Oct 2 11:38:58 bart NetworkManager[1470]: <warn> /sys/devices/virtual/net/tap0: couldn't determine device driver; ignoring...
Oct 2 11:38:58 bart NetworkManager[1470]: <warn> VPN plugin failed: 2
Oct 2 11:38:58 bart nm-openvpn[4448]: WARNING: Failed running command (--up/--down): external program exited with error status: 1
Oct 2 11:38:58 bart nm-openvpn[4448]: Exiting
Oct 2 11:38:58 bart vmnetBridge: RTM_DELLINK: name:tap0 index:6 flags:0x00001002
Oct 2 11:38:58 bart avahi-daemon[1544]: Withdrawing workstation service for tap0.
Oct 2 11:38:58 bart NetworkManager[1470]: SCPlugin-Ifupdown: devices removed (path: /sys/devices/virtual/net/tap0, iface: tap0)
Oct 2 11:38:58 bart NetworkManager[1470]: <warn> VPN plugin failed: 1
Oct 2 11:38:58 bart NetworkManager[1470]: <info> VPN plugin state changed: 6
Oct 2 11:38:58 bart NetworkManager[1470]: <info> VPN plugin state change reason: 0
Oct 2 11:38:58 bart NetworkManager[1470]: <warn> error disconnecting VPN: Could not process the request because no VPN connection was active.
Oct 2 11:39:03 bart NetworkManager[1470]: <info> VPN service 'openvpn' disappeared

The only obvious problem I'm seeing is
WARNING: No server certificate verification method has been enabled.

That's an configuration option I got in the conf-file I used in console mode but I don't see how to set it via the NetworkManager-GUI.
Does anyone know where the manager stores the connection configurations?

But I doubt, that that's the real issue.
Any hints?
gotcha
Level 1
Level 1
 
Posts: 1
Joined: Sun Oct 02, 2011 4:34 am

Linux Mint is funded by ads and donations.
 

Return to Other networking topics

Who is online

Users browsing this forum: No registered users and 1 guest