Though I have been using LM for the past few years, this is my first post!
I run OpenVPN Server on my home router which is also a flavour of Linux. Please see below ...
Code: Select all
SynologyRouter> openvpn
OpenVPN 2.3.11 armle-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Sep 14 2017
SynologyRouter> cat /proc/version
Linux version 3.4.103 (root@build3) (gcc version 4.9.3 20150311 (prerelease) (crosstool-NG 1.20.0) ) #6542 SMP Wed Nov 8 14:40:09 CST 2017
Network Setting > "+" > Import from file > Entered UserID > Entered Password
When I try to start the VPN from the Network Settings, the following is what I see in /var/log/syslog file.
Code: Select all
Dec 26 23:13:47 MintLinux183 NetworkManager[864]: nm-openvpn-Message: openvpn[10357] started
Dec 26 23:13:47 MintLinux183 nm-openvpn[10357]: OpenVPN 2.3.10 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Jun 22 2017
Dec 26 23:13:47 MintLinux183 nm-openvpn[10357]: library versions: OpenSSL 1.0.2g 1 Mar 2016, LZO 2.08
Dec 26 23:13:48 MintLinux183 nm-openvpn[10357]: WARNING: No server certificate verification method has been enabled.
Dec 26 23:13:48 MintLinux183 nm-openvpn[10357]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Dec 26 23:13:48 MintLinux183 nm-openvpn[10357]: Control Channel Authentication: using '/home/testusr/.cert/nm-openvpn/VPNConfig-tls-auth.pem' as a OpenVPN static key file
Dec 26 23:13:49 MintLinux183 nm-openvpn[10357]: NOTE: chroot will be delayed because of --client, --pull, or --up-delay
Dec 26 23:13:49 MintLinux183 nm-openvpn[10357]: NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay
Dec 26 23:13:49 MintLinux183 nm-openvpn[10357]: UDPv4 link local: [undef]
Dec 26 23:13:49 MintLinux183 nm-openvpn[10357]: UDPv4 link remote: [AF_INET] XXX.YYY.AAA.BBB:443
Dec 26 23:13:50 MintLinux183 nm-openvpn[10357]: VERIFY ERROR: depth=1, error=unable to get issuer certificate: C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Domain Validation Secure Server CA
Dec 26 23:13:50 MintLinux183 nm-openvpn[10357]: [color=#BF0000]TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed[/color]
Dec 26 23:13:50 MintLinux183 nm-openvpn[10357]: TLS Error: TLS object -> incoming plaintext read error
Dec 26 23:13:50 MintLinux183 nm-openvpn[10357]:TLS Error: TLS handshake failed
Dec 26 23:13:50 MintLinux183 nm-openvpn[10357]: SIGUSR1[soft,tls-error] received, process restarting